HPE Community
Operating System - HP-UX
1838661 Members
10692 Online
110128 Solutions
New Discussion

SSL

 
Sathish C
Frequent Advisor

‎02-25-2004 04:53 PM

‎02-25-2004 04:53 PM

SSL

Hi
If we decided to take away ftp,rlogin,remsh,finger and try to work with SSH,SCP will the codes that were written with open socket function get affected , or I can just concentrate on finding out codes that are using remsh,rcp and ftp .

Thanx
Some cause happiness wherever they go; others, whenever they go
0 Kudos
Reply
6 REPLIES 6
Ravi_8
Honored Contributor

‎02-25-2004 05:07 PM

‎02-25-2004 05:07 PM

Re: SSL

Hi,

Yes it will get affected, you have to look for code using remsh,rcp anf ftp
never give up
0 Kudos
Reply
Steven E. Protter
Exalted Contributor

‎02-25-2004 05:11 PM

‎02-25-2004 05:11 PM

Re: SSL

anything that uses remesh can be done with ssh
anything that can be done with rcp can be done with scp
anything you do with ftp can be done, even scripted with sftp.

Good choice.

SEP
Steven E Protter
Owner of ISN Corporation
http://isnamerica.com
http://hpuxconsulting.com
Sponsor: http://hpux.ws
Twitter: http://twitter.com/hpuxlinux
Founder http://newdatacloud.com
0 Kudos
Reply
Steven E. Protter
Exalted Contributor

‎02-25-2004 05:15 PM

‎02-25-2004 05:15 PM

Re: SSL

If you use named based virtual hosting its not possible to run ssl on the server.

I think you can get away with it if you use ip based virtual hosting or dedicate an ip address to the ssl connection.

I'm working on that and will report back.

SEP
Steven E Protter
Owner of ISN Corporation
http://isnamerica.com
http://hpuxconsulting.com
Sponsor: http://hpux.ws
Twitter: http://twitter.com/hpuxlinux
Founder http://newdatacloud.com
0 Kudos
Reply
Sathish C
Frequent Advisor

‎02-25-2004 05:17 PM

‎02-25-2004 05:17 PM

Re: SSL

How do we do about socket() functions that were written via c or c++ code ? What I mean is If search my Configuration Control System with codes that contains remsh,ftp,rcp this will not suffice this SSL implementation , Am I right ?
Some cause happiness wherever they go; others, whenever they go
0 Kudos
Reply
Steven E. Protter
Exalted Contributor

‎02-25-2004 05:24 PM

‎02-25-2004 05:24 PM

Re: SSL

You will need to change and recompile that code.

SEP
Steven E Protter
Owner of ISN Corporation
http://isnamerica.com
http://hpuxconsulting.com
Sponsor: http://hpux.ws
Twitter: http://twitter.com/hpuxlinux
Founder http://newdatacloud.com
0 Kudos
Reply
rick jones
Honored Contributor

‎02-27-2004 06:01 AM

‎02-27-2004 06:01 AM

Re: SSL

If you want all communications from your system encrypted, you might consider using IPSEC, which can be configured at the IP level and thus can cover everything at once.

Note that this is _not_ the same as excrypting at the socket layer a la SSL.

As pointed-out, if you also want arbitrary socket applications to use SSL you will need to take steps to compile them to use it.
there is no rest for the wicked yet the virtuous have no pillows
0 Kudos
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.