[1856] in linux-security and linux-alert archive

home help back first fref pref prev next nref lref last post

[linux-security] Re: Services not required?

daemon@ATHENA.MIT.EDU (Pawel Krawczyk)
Sun Jun 14 04:21:17 1998

Date: Tue, 9 Jun 1998 16:10:01 +0200 (CEST)
From: Pawel Krawczyk <kravietz@ceti.com.pl>
To: linux-security@redhat.com
In-Reply-To: <Pine.LNX.3.96.980609140037.12484A-100000@andercheran.aiind.upv.es>
Resent-From: linux-security@redhat.com
Resent-Reply-To: linux-security@redhat.com

On Tue, 9 Jun 1998, Linux Mailing Lists wrote:

> The best solution when you're worried with sniffers is to use as much
> encrypted services as possible (either SSH or SSL), the problem is that
> Winblows/DOS/Mac haven't got much ports of those utilities. For example, I
> think there's an SSL version of the pop3 server, but you won't be able to
> find a SSLPOP3 client for windows (AFAIK). I think that Unix systems to be
> more and more secure, but to be "windows compatible" we must use
> stupid-non secure protocols :(

Most of the popular windows email clients support SSL - Netscape Messenger
has IMAP/SSL, MS Outlook - POP3/SSL. You can setup a SSL servers for those
services with quite small effort using wrapper like stunnel 
(http://mike.daewoo.com.pl/computer/stunnel/). stunnel performs the initial
SSL handshake with the client, calls the original non-SSL daemon and works
as encrypting proxy between them. For linux I have prepared a SSL enabled
fetchmail version (ftp://ftp.ceti.com.pl/pub/linux/), but tunneling over
SSH would be probably more efficient.

--
Pawel Krawczyk, CETI internet, Krakow. http://www.ceti.com.pl/
info: oferta@ceti.com.pl.  Home: http://ceti.com.pl/~kravietz/

-- 
----------------------------------------------------------------------
Please refer to the information about this list as well as general
information about Linux security at http://www.aoy.com/Linux/Security.
----------------------------------------------------------------------

To unsubscribe:
  mail -s unsubscribe linux-security-request@redhat.com < /dev/null


home help back first fref pref prev next nref lref last post