Search
Search

nginx configuration option "optional_no_ca"

user827329 Published at Dev
4
user827329

I have a python application running behind an SSL nginx server.

In the nginx config I use "optional_no_ca" because I want to accept self signed certs.

My question is: can I blindly assume that the connection initiator is also the owner of the private part of the public key that I get in the certificate.

I.e. can I use the public key as the user id?

Eugene Mayevski 'Callback

Yes, if the client authenticates with a certificate on SSL/TLS level, this confirms that the client has a corresponding private key.

Yet I would question the approach of using public keys as user IDs. Disclosure of the private key in this situation would need to replace the keypair and thus the user account should be discarded as well (if it's identified by the public key).

Another aspect is that the public keys and client-side certificates are not handy for users to manage.

Collected from the Internet

Please contact [email protected] to delete if infringement.

edited at
0

Comments

0 comments
Login to comment

Related

From Dev

Bad configuration option: ServerAliveInterval

From Dev

bad configuration option in git

From Dev

nginx + nodejs configuration

From Java

Nginx configuration in OS X

From Dev

recommended nginx configuration for meteor

From Dev

Nginx configuration not updating for browser

From Dev

Reload nginx configuration

From Dev

nginx configuration for Laravel 4

From Dev

Nginx configuration for Wordpress in a directory

From Dev

nginx configuration for laravel

From Dev

Simple Configuration Nginx and Varnish

From Dev

Nginx dynamic location configuration

From Dev

Nginx configuration for friendly urls

From Dev

How to DRY nginx configuration

From Dev

nginx configuration for a RESTful API

From Dev

modular nginx configuration not working

From Dev

Nginx configuration location

From Dev

Nginx configuration location and index

From Dev

Simple Configuration Nginx and Varnish

From Dev

Nginx configuration problems

From Dev

Nginx configuration:files alias

From Dev

SSL configuration on nginx 1.6

From Dev

How to DRY nginx configuration

From Dev

Nginx and upstream : configuration failed

From Dev

Nginx configuration location and index

From Dev

Nginx configuration location

From Dev

Nginx SSL Configuration Failing

From Dev

NGINX Websockets, and SSL Configuration

From Dev

Wrong nginx or dns configuration?

Related Related

  1. 1

    Bad configuration option: ServerAliveInterval

  2. 2

    bad configuration option in git

  3. 3

    nginx + nodejs configuration

  4. 4

    Nginx configuration in OS X

  5. 5

    recommended nginx configuration for meteor

  6. 6

    Nginx configuration not updating for browser

  7. 7

    Reload nginx configuration

  8. 8

    nginx configuration for Laravel 4

  9. 9

    Nginx configuration for Wordpress in a directory

  10. 10

    nginx configuration for laravel

  11. 11

    Simple Configuration Nginx and Varnish

  12. 12

    Nginx dynamic location configuration

  13. 13

    Nginx configuration for friendly urls

  14. 14

    How to DRY nginx configuration

  15. 15

    nginx configuration for a RESTful API

  16. 16

    modular nginx configuration not working

  17. 17

    Nginx configuration location

  18. 18

    Nginx configuration location and index

  19. 19

    Simple Configuration Nginx and Varnish

  20. 20

    Nginx configuration problems

  21. 21

    Nginx configuration:files alias

  22. 22

    SSL configuration on nginx 1.6

  23. 23

    How to DRY nginx configuration

  24. 24

    Nginx and upstream : configuration failed

  25. 25

    Nginx configuration location and index

  26. 26

    Nginx configuration location

  27. 27

    Nginx SSL Configuration Failing

  28. 28

    NGINX Websockets, and SSL Configuration

  29. 29

    Wrong nginx or dns configuration?

HotTag

Archive