Dave is making it easier to secure Radio with SSL using stunnel, by changing the radio.webServer.firewall script to call callbacks. Doing the simple always-auth thing Chris hacked is easy: have a callback that does "pta^.flSameMachine = false."
Setting up stunnel is another matter, though. Apparently I need an stunnel private key (PEM), which isn't so when using stunnel to telnet to FurryMUCK since it's done in client mode. With FurryMUCK, it's decrypted in and encrypted out; with Radio, it should be encrypted in and decrypted out.
Unfortunately, I'm on Windows, so it's not terribly clear how I go about generating a PEM. Apparently I need the openssl program, not just the library, but OpenSSL.org says:
If you want to install OpenSSL on a Windows system and you don't have a C compiler, [get one, you lazy bastard].
Only nicely.
