HPE Community
Operating System - Linux
1821981 Members
3168 Online
109638 Solutions
New Discussion юеВ

yum and ssl...

 
K.C. Chan
Trusted Contributor

тАО09-23-2005 02:00 PM

тАО09-23-2005 02:00 PM

yum and ssl...

all,
I am setting up our own yum repository. It is working with our network. However I want to open it up for our remote servers only. How can I make this secure. I was thinking of using ssl certs and httpd proxy the session to our yum server behind the firewall. Any thoughts?
Reputation of a thousand years can be determined by the conduct of an hour
0 Kudos
Reply
4 REPLIES 4
Gopi Sekar
Honored Contributor

тАО09-23-2005 08:22 PM

тАО09-23-2005 08:22 PM

Re: yum and ssl...


I believe yum server runs using httpd(correct me if i am wrong), in that case enabling SSL transaction on the httpd is not going to be big issue.

But I doubt whether the yum client can handle https requests. For this you might have to use some wrapper utilites which enables client applications SSL aware. check this link:
http://www.openssl.org/related/apps.html

Regards,
Gopi
Never Never Never Giveup
0 Kudos
Reply
K.C. Chan
Trusted Contributor

тАО09-25-2005 01:42 AM

тАО09-25-2005 01:42 AM

Re: yum and ssl...

yeah, from the looks of it, I don't think yum client knows how to handle ssl key. Any idea on how to get yum client to work with ssl key? Thanks.
Reputation of a thousand years can be determined by the conduct of an hour
0 Kudos
Reply
Gopi Sekar
Honored Contributor

тАО09-25-2005 01:56 AM

тАО09-25-2005 01:56 AM

Re: yum and ssl...


I think for this you can use standard ssl wrapper utilities, the link I posted in the previous answer contains various utilities which I believe can act as SSL proxy for your client application.

I believe, stunnel has client side wrapper application which can talk with the SSL enabled service and negotiate all SSL transactions, after this the client application is called to handle clear text data.

Hope this helps,
Gopi
Never Never Never Giveup
0 Kudos
Reply
Ivan Ferreira
Honored Contributor

тАО09-26-2005 07:44 AM

тАО09-26-2005 07:44 AM

Re: yum and ssl...

I think that you can use a SSH tunnel (port forwarding).

http://www.ssh.com/support/documentation/online/ssh/adminguide/32/Port_Forwarding.html
Por que hacerlo dificil si es posible hacerlo facil? - Why do it the hard way, when you can do it the easy way?
0 Kudos
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.