SSL support

[Robin]

Any plan for SSL(https) support ?

Thanks

Robin

[rejetto]

Any plan for SSL(https) support ?

nope
i'm using a free lib, but i should pay to get SSL

[Guest]

OpenSSL is based on the excellent SSLeay library developed by Eric A. Young and Tim J. Hudson. The OpenSSL toolkit is licensed under an Apache-style licence, which basically means that you are free to get and use it for commercial and non-commercial purposes subject to some simple license conditions.

http://www.openssl.org/

[MarkV]

Don't know how Apache-style license goes with the GPL, though... maybe as an optional component.

[andreone]

Miranda IM is GPL and uses OpenSSL for Jaber networks. I really don't think they break any license.
At least one secure protocol would be valuable to HPS.

[rejetto]

the license is not a problem, openssl is free software.
it's a matter of work.

[cmatte]

I've gotta say using stunnel isn't that bad, if not for the logs of HFS which show 127.0.0.1 instead of the external ip shown only on stunnel logs.
One suggestion, could you please add the ability to add https:// instead of http:// at the beginning of the URLs copied/made from HFS?

[maverick]

I've gotta say using stunnel isn't that bad, if not for the logs of HFS which show 127.0.0.1 instead of the external ip shown only on stunnel logs.
One suggestion, could you please add the ability to add https:// instead of http:// at the beginning of the URLs copied/made from HFS?

When stunnel is active, use the stunnel logs not hfs logs.  Stunnel is a stand alone program.  When stunnel is active all urls shown in the browser automatically start with https://.

[rejetto]

sadly the https:// is automatic only when it is just not specified elsewhere, and the browser does the job.

sometimes URLs generated by HFS include http:// like for urls that contains passwords.
i don't know how to autodetect this, but i may introduce an option so you can chose it manually. i put it in the to-do-list.

[cmatte]

i don't know how to autodetect this, but i may introduce an option so you can chose it manually. i put it in the to-do-list.

That's exactly what I meant, thanks

[cmatte]

Sorry for the double post, I were just thinking at how you could autodetect it: a simple way could be to check if stunnel.exe running process exists (I know, not a good one but it's a beginning!).
You could implement this, and a user should be able to choose if enabling/disabling https manually, or use the autodetect stuff.
Anyway a manual choose is enough I think

[Unknown8063]

Unfortunately these solutions are not sufficient for my needs.  I use one instance of HFS which is meant to be accessed either from HTTPS or HTTP depending on if the user is from the Internet or private network.

Additionally, both connections use the same IP address from HFS's point-of-view as the machine forwarding Internet connections uses the same private network IP that private network users use directly.

[rejetto]

let me know if you find a way to tell one from the other