• Any one implement SSL for Synchronet?

    From Boosted@TURBO to All on Wed Dec 16 09:27:38 2015
    Anyone using SSL on Synchronet? How did you implement? Server sitting in public domain or behind a fw/router? What telnet client do you use for Telnet over TLS/SSL?

    Thanks.

    Boosted

    ---
    ■ Synchronet ■ turbo - turbobbs.mooo.com
  • From tracker1@TRNTEST to Boosted on Sat Dec 19 03:43:15 2015
    Anyone using SSL on Synchronet? How did you implement? Server sitting in public domain or behind a fw/router? What telnet client do you use for Telnet over TLS/SSL?

    Synchronet has an SSH service built in... if you want HTTPS, your best bet is to setup a reverse-proxy server. Nginx can do this on *nix, and IIS + Application Request Routing (ARR) on windows can do the same.

    I would suggest forwarding directory requests as well as anything ending in .xjs or .ssjs through, and serving static files (images, css, etc) via the server doing https.
    --
    Michael J. Ryan
    tracker1(at)gmail.com
    +o Roughneck BBS

    ---
    ■ Synchronet ■ RoughneckBBS - http://www.roughneckbbs.com/
  • From Fireball@FBEX to Boosted on Sat Dec 19 06:50:08 2015
    Subject: Any one implement SSL for Synchronet?
    @MSGID: <567182EA.28.dove-syncjs@turbobbs.mooo.com>
    @TZ: 4168
    Anyone using SSL on Synchronet? How did you implement? Server sitting in public domain or behind a fw/router? What telnet client do you use for Telnet over TLS/SSL?

    Thanks.

    Boosted


    Just make sure ssh is enables and use that. Syncterm will do ssh as well as putty
    using cp437 translation.

    -=Fireball=-

    ---
    ■ Synchronet ■ Fireball Express!!! BBS - http://fireballex.com telnet://fireballex.com
  • From Mro@BBSESINF to Fireball on Sat Dec 19 11:42:05 2015
    Re: Re: Any one implement SSL for Synchronet?
    By: Fireball to Boosted on Sat Dec 19 2015 06:50 am

    Anyone using SSL on Synchronet? How did you implement? Server sitting in public domain or behind a fw/router? What telnet client do you use for Telnet over TLS/SSL?

    Just make sure ssh is enables and use that. Syncterm will do ssh as well as putty
    using cp437 translation.


    there are people that do telnet over tls/ssl
    ---
    ■ Synchronet ■ ::: BBSES.info - free BBS services :::
  • From Digital Man to tracker1 on Sat Dec 19 15:01:34 2015
    Re: Re: Any one implement SSL for Synchronet?
    By: tracker1 to Boosted on Sat Dec 19 2015 03:43 am

    Anyone using SSL on Synchronet? How did you implement? Server sitting in public domain or behind a fw/router? What telnet client do you use for Telnet over TLS/SSL?

    Synchronet has an SSH service built in... if you want HTTPS, your best bet is to setup a reverse-proxy server. Nginx can do this on *nix, and IIS + Application Request Routing (ARR) on windows can do the same.

    The Synchronet web server in v3.17 (the current dev builds) supports HTTPS/TLS, built-in.

    digital man

    Synchronet "Real Fact" #34:
    The irc.synchro.net network has more servers than users.
    Norco, CA WX: 60.3°F, 63.0% humidity, 13 mph ESE wind, 0.00 inches rain/24hrs
  • From Boosted@TURBO to Digital Man on Sat Dec 19 22:40:45 2015
    Re: Re: Any one implement SSL for Synchronet?
    By: tracker1 to Boosted on Sat Dec 19 2015 03:43 am

    Anyone using SSL on Synchronet? How did you implement? Server sitting in public domain or behind a fw/router? What telnet client do you use for Telnet over TLS/SSL?

    Synchronet has an SSH service built in... if you want HTTPS, your best bet is to setup a reverse-proxy server. Nginx can do this on *nix, and IIS Application Request Routing (ARR) on windows can do the same.

    The Synchronet web server in v3.17 (the current dev builds) supports HTTPS/TLS,
    built-in.

    digital man

    Synchronet "Real Fact" #34:
    The irc.synchro.net network has more servers than users.
    Norco, CA WX: 60.3F, 63.0% humidity, 13 mph ESE wind, 0.00 inches rain/24hrs

    ---
    Synchronet Vertrauen Home of Synchronet telnet://vert.synchro.net


    I ended up installing STunnel and created a CA, intermediate cert, and server cert. I had issues with the links as they are hard reference to http and not https (ecweb). Corrected the links is serveral ssjs files and https now works fully for the website

    ---
    ■ Synchronet ■ Boosted - turbobbs.mooo.com
  • From tracker1@TRNTEST to Digital Man on Mon Dec 21 17:33:13 2015
    Re: Re: Any one implement SSL for Synchronet?
    By: tracker1 to Boosted on Sat Dec 19 2015 03:43 am

    Anyone using SSL on Synchronet? How did you implement? Server sitting in public domain or behind a fw/router? What telnet client do you use for Telnet over TLS/SSL?

    Synchronet has an SSH service built in... if you want HTTPS, your best bet is to setup a reverse-proxy server. Nginx can do this on *nix, and IIS + Application Request Routing (ARR) on windows can do the same.

    The Synchronet web server in v3.17 (the current dev builds) supports HTTPS/TLS, built-in.

    Cool, wasn't aware that HTTPS was supported.
    Any chance of seeing ACME/LetsEncrypt integration?

    I'm still likely to use nginx or iis+arr in front of synchronet.
    --
    Michael J. Ryan
    tracker1(at)gmail.com
    +o Roughneck BBS

    ---
    ■ Synchronet ■ RoughneckBBS - http://www.roughneckbbs.com/
  • From Deuce@SYNCNIX to tracker1 on Mon Dec 21 18:27:08 2015
    Re: Re: Any one implement SSL for Synchronet?
    By: tracker1 to Digital Man on Mon Dec 21 2015 05:33 pm

    Cool, wasn't aware that HTTPS was supported.
    Any chance of seeing ACME/LetsEncrypt integration?

    It's on my TODO list, but LetsEncrypt is frankly pretty scary to a system admin. I haven't looked at ACME.

    ---
    http://DuckDuckGo.com/ a better search engine that respects your privacy.
    Mro is an idiot. Please ignore him, we keep hoping he'll go away.
    ■ Synchronet ■ My Brand-New BBS (All the cool SysOps run STOCK!)
  • From tracker1@TRNTEST to Deuce on Wed Dec 30 00:42:05 2015
    Cool, wasn't aware that HTTPS was supported.
    Any chance of seeing ACME/LetsEncrypt integration?

    It's on my TODO list, but LetsEncrypt is frankly pretty scary to a system admin. I haven't looked at ACME.

    There's thinner clients, a few in golang look interesting and far simpler
    ACME, the full letsencrypt looks pretty horrific, agreed... but the idea for BBS integration would be pretty cool.
    --
    Michael J. Ryan
    tracker1(at)gmail.com
    +o Roughneck BBS

    ---
    ■ Synchronet ■ RoughneckBBS - http://www.roughneckbbs.com/