ExternalVendorCode/tahoe-lafs
1
0
Fork 0
mirror of https://github.com/tahoe-lafs/tahoe-lafs.git synced 2025-02-20 17:52:50 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity

Added information on accounts.url directive

Browse Source
This commit is contained in:
Patrick R McDonald 2012-01-19 13:15:21 -05:00 committed by Brian Warner
parent 0ac4801293
commit ee9d28f20b
1 changed files with 13 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

13
docs/frontends/FTP-and-SFTP.rst
View File

@ -73,6 +73,19 @@ these strings.
Now add an 'accounts.file' directive to your tahoe.cfg file, as described in
the next sections.
accounts.url Directive
======================
The accounts.url directive should point to a secure, preferably
localhost-only service. This makes it harder for attackers to brute force
the password or use DNS poisoning to cause the Tahoe-LAFS gateway to talk
with the wrong server, thereby revealing the username and passwords.
Tahoe-LAFS will send the credentials, email address and password to the
URI specified in the accounts.url directive. If the credentials are correct,
the server will return a rootcap string. Otherwise, it returns the string
"0" which means bad username and/or password.
Configuring FTP Access
======================