topic OpenSSL in Operating System - HP-UX

OpenSSL

Kevin Westover — Tue, 15 Feb 2005 17:09:03 GMT

I have an application (IBM's wIntegrate) that uses SSL to provide a telnet-like session to a host. I have installed OpenSSL on my HP N-class server running HPUX 11i. When I try to connect to the host, I get a "connection refused" message. The software mentions a particular port number that is standard for the SSL communication (992?) but I don't believe I have anything listening on that port. Is anyone aware of documentation that might help me figure out how to get the SSL communication going on my HP box? Thanks.

Kevin

Re: OpenSSL

TwoProc — Tue, 15 Feb 2005 18:13:34 GMT

examine the /var/adm/syslog/syslog.log file and look to see what refused your connection. You should get a starting clue as to what is going on in there.

Re: OpenSSL

Florian Heigl (new acc) — Tue, 15 Feb 2005 21:18:36 GMT

OpenSSL is only an encapsulation for encryption some communcation - there is both a telnet/ssl implementation and openssh.

If You could check the port number, it would probably be helpful, as I don't know the application :(

Re: OpenSSL

James A. Donovan — Tue, 15 Feb 2005 22:15:12 GMT

Just a guess based on the port number you're giving, but it sounds like your application has the ability to connect to SSL-enabled FTP servers. An SSL-enabled FTP server has the ability to establish an encrypted connection over port 990. Standard FTP servers establish non-encrypted connections over ports 20 and 21. This means that using a standard FTP server, the username, password, and data transfers are all sent over the network in the clear. So anyone sniffing the network could potentially grab all your "sensitive" information. If your FTP session is SSL-encrypted, a sniffer could collect the packets, but not be able to read them.

In order to "use" this feature of your product, you would have to install such an FTP server on your HP-UX box. I'm not aware of any such FTP server products being available for HP-UX. There are many such available for Windows platforms.

Re: OpenSSL

Kevin Westover — Wed, 16 Feb 2005 10:42:31 GMT

I believe the "telnet/SSL" or "SSLtelnet" application is what I am looking for. Is anywone aware of an implementation of this for HPUX?

Re: OpenSSL

Florian Heigl (new acc) — Wed, 16 Feb 2005 13:13:11 GMT

You could look at the following site, at least he mentiones having used it on HP-UX.

http://www.crufty.net/ftp/pub/sjg/announce.stelnet

But I do think You should first verify with IBM (docs or people) that this is what You need before starting to invest time in it.