Re: Securing tcp data

From: Barry Margolin (barmar_at_alum.mit.edu)
Date: 11/12/05

• Next message: Deokhwan Kim: "CFP: SAS'06"
• Previous message: vvcd: "2005-Nov-08-to-2005-Aug-01 new programs, 2nd edition"
• In reply to: Mark: "Re: Securing tcp data"
• Next in thread: Volker Birk: "Re: Securing tcp data"
• Reply: Volker Birk: "Re: Securing tcp data"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: Sat, 12 Nov 2005 11:28:06 -0500

In article <4ku8n197hgh7pavd1pqphmdgmbrfe8kbkn@4ax.com>,
 Mark <nospam@nospam.hello> wrote:

> On Thu, 10 Nov 2005 14:51:31 +0000, Mark <nospam@nospam.hello> wrote:
>
> >Hi,
> >
> >We need to secure the communication between a tcp/ip server and a
> >remote client. The protocol is propriatory but simple and
> >communicates on a single port.
> >
> >The current thinking is to use SSL. The server runs on OpenVMS and
> >the clients must run on lots of platforms: Windows, Linux, UNIX,
> >OpenVMS to name but four.
> >
> >Would a SSL proxy work in this case? It would save us rewriting the
> >existing code? Are there any proxies that work on these OSs? Would
> >it be possible to use different proxies at client and server ends?
>
> I misunderstood the original requirements. The secure channel is to
> be in addition to a normal VPN. We want an additional level of
> security in case something is compromised _behind_ our clients'
> firewalls. i.e. we need to secure the data all the way from the
> client's application to our application even if both are not hosted by
> us.
>
> Mark.

Google for "SSL reverse proxy". You make an SSL connection with an
ordinary web browser on the client machine to a proxy server at your
site, and it establishes a secure tunnel through the SSL connection.

-- 
Barry Margolin, barmar@alum.mit.edu
Arlington, MA
*** PLEASE post questions in newsgroups, not directly to me ***

• Next message: Deokhwan Kim: "CFP: SAS'06"
• Previous message: vvcd: "2005-Nov-08-to-2005-Aug-01 new programs, 2nd edition"
• In reply to: Mark: "Re: Securing tcp data"
• Next in thread: Volker Birk: "Re: Securing tcp data"
• Reply: Volker Birk: "Re: Securing tcp data"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages Re: Configuring SSL in IIS SMTP ... so since I have the combination of IIS with Auth/TLS and Secure ... Channel required working with the offsite client that requires TLS, ... If the SSL checkbox means SSL .. ... (microsoft.public.inetserver.iis.smtp_nntp) Re: clients editing information w/o authentication--advice needed ... I completely concur that username/password authentication is the way to go. ... SSL, while the most secure, is not essential since there's no confidential ... I will "push back" with the client and tell them they'd be better off ... (comp.lang.php) Re: pop and smtp errors unique to machine ... His post doesn't indicate the client is trying SSL. ... (See the line Secure ... What he is getting is a socket error. ... (microsoft.public.windowsxp.network_web) Re: pop and smtp errors unique to machine ... His post doesn't indicate the client is trying SSL. ... (See the line Secure ... What he is getting is a socket error. ... (microsoft.public.outlook.general) Re: pop and smtp errors unique to machine ... His post doesn't indicate the client is trying SSL. ... (See the line Secure ... What he is getting is a socket error. ... (microsoft.public.outlook)

• Security
• UNIX
• Linux
• Coding
• Usenet

• News
• Mailing-Lists
• Newsgroups
• Service
• About
• Privacy
• Search
• Imprint