<div dir="ltr"><br><div class="gmail_extra"><br><div class="gmail_quote">On 29 May 2015 at 14:23, Dirk Hohndel <span dir="ltr"><<a href="mailto:dirk@hohndel.org" target="_blank">dirk@hohndel.org</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0px 0px 0px 0.8ex;border-left-width:1px;border-left-color:rgb(204,204,204);border-left-style:solid;padding-left:1ex"><span class="">On Fri, May 29, 2015 at 08:13:44AM +0100, Long, Martin wrote:<br>
> A little feedback:<br>
><br>
> Advanced mode - I'd most likely use this. I think this is quite important,<br>
> and opens up the possibility or using Github, Bitbucket, or privately<br>
> hosted git repos.<br>
><br>
> You keep saying "PIN". Could that actually be any passphrase? i.e. why<br>
> limit it to numbers, or limit the length? I'd typically use a random string<br>
> generated by Lastpass.<br>
<br>
</span>I say "PIN" because I want it to sound easy to users.<br>
This /IS/ the private key passphrase.<br>
<span class=""><br>
> How about https with auth? I know it's not intended for use in a corporate<br>
> environment, but some people could have trouble with SSH through firewalls.<br>
<br>
</span>Because Subsurface clearly is something that people are running in their<br>
corporate environment.<br>
<br>
My goal is to implement something that will work for most people in a<br>
typical scenario. Https means I need to get yet another random number that<br>
I pay a lot of money for. On top of the server that I pay for. The<br>
bandwidth that I pay for. And in the case of this remote storage idea, I<br>
guess the storage I pay for.<br>
<br>
If you would like to contribute the code that makes this work seamlessly<br>
with https on github, be my guess, your contributions will be gladly<br>
accepted.<br>
<br>
If I can get this to work with ssh and my infrastructure I'll be thrilled<br>
and I'll call it a major new feature in 4.5<br>
<span class=""><br>
> Also, wouldn't this be a simpler option than downloading and decrypting<br>
> keys (which seems to somewhat defeat the purpose of using PKI in the first<br>
> place, as it has essentially become username/password auth).<br>
<br>
</span>I repeat. Goal #1 is to make this trivially easy for users. Anyone who<br>
cares about security, privacy, PKI, whatever, please don't use this.<br>
<br>
Any project that tells the average diver "create an ssh key pair, create a<br>
github account, install your public key on github, select your private key<br>
in Subsurface, add your github account information and look how easy it is<br>
to use this" is seriously confused.<br>
<br>
Have you looked at the level of questions we are getting from users?<br>
<span class=""><font color="#888888"><br>
/D<br>
</font></span></blockquote></div><br></div><div class="gmail_extra">I didn't want to come across as hostile. I know I haven't contributed a LOT to the project like some others. Unfortunately, although I'm a developer, C/C++ are not strengths of mine, so contributing code is difficult, but I was just offering a contribution in the form of some feedback from my perspective. </div><div class="gmail_extra"><br>You can get FREE SSL certificates, which are accepted by all of the major browsers, from StartSSL. They do simple verification using email, and you can get them straight away. I use them all the time. It's secure, but they just don't offer the monetary guarantees that the big providers offer, making it unsuitable for ecommerce. <br><br>I quite understand that we need to keep this simple for the user, and hence my suggestion to use https.I thought it would be simpler to do this using http/https than it would using a convoluted method of fetching and decrypting a key using a REST api, especially when the result is ultimately the same - login using a username/password. I don't think at any point did I suggest that [non-advance] users should be creating SSH keys, rather that we ought to consider user/password security over http as a better fit implementation for that use case. </div><div class="gmail_extra"><br></div><div class="gmail_extra">Martin</div></div>