Web Terminal Emulator
Posted: Wed Apr 26, 2023 3:49 am
I've got a web-based terminal emulator working over a secure WebSocket connection (https://www.neatobbs.com). I'm using a WS to Telnet proxy and Xterm as the terminal emulator. This method eliminates the telnet over a public internet connection to the BBS, and all traffic is over the secure WebSocket connection to the client. ( I have telnet blocked at the firewall except between the proxy and the BBS)
My next project is to implement an SSO authentication system that will proxy a front-end account, on a modern authentication platform, to their BBS username/alias and randomized password. I'll update my current javascript to script the BBS login for the user to make it seamless for them. Ideally, they won't even be aware this is happening.
Question though, is it possible to prevent all possible ways that a user could change their password on the BBS? I think I've managed to do it, but it's been 16 years since I ran my board. It's funny how fast it is coming back, though. I guess when you do something every day for 17 years, you never really forget it.
The other question is, am I wasting my time here, has someone else already solved this problem? I want to make the board as secure as possible given the current limitations. Appreciate any help or suggestions!
Thanks,
Pete
My next project is to implement an SSO authentication system that will proxy a front-end account, on a modern authentication platform, to their BBS username/alias and randomized password. I'll update my current javascript to script the BBS login for the user to make it seamless for them. Ideally, they won't even be aware this is happening.
Question though, is it possible to prevent all possible ways that a user could change their password on the BBS? I think I've managed to do it, but it's been 16 years since I ran my board. It's funny how fast it is coming back, though. I guess when you do something every day for 17 years, you never really forget it.
The other question is, am I wasting my time here, has someone else already solved this problem? I want to make the board as secure as possible given the current limitations. Appreciate any help or suggestions!
Thanks,
Pete