Firewall Wizards mailing list archives
Re: General security question
From: "H. Morrow Long" <morrow.long () yale edu>
Date: Mon, 13 Nov 2000 11:24:41 -0500
Yes. I've looked it over and tested it. It is too bad that it doesn't interoperate with the existing FTP over SSL implementation(s). Why didn't IPSwitch make it compatible with the FTP over SSL clients and server that are compatible with SSLeay and OpenSSL? Is IPSwitch implementing a new FTP over SSL/TLS specification in WS+FTP Pro 6.6? - H. Morrow Long Dir - Information Security Office Yale University, ITS, University Information Security Office istong wrote:
Also bear in mind if you are looking for a more secure FTP solution WS_FTP Pro 6.6 now has SSL support. The downside is you have to use their client and server pieces. FYI, Ian ----- Original Message ----- From: "Jensen, Greg" <Greg_Jensen () NAI com> To: "'Marcus J. Ranum '" <mjr () nfr com>; <TDyson () sybex com>; <firewall-wizards () nfr com> Sent: Sunday, November 12, 2000 8:47 AM Subject: RE: [fw-wiz] General security questionDon't exclude PGP E-business Server. This allows you to utilize the encryption strength of PGP with FTP. You can schedule batch transactions that will automaticly encrypt to individual's private keys, or based onSDA(Self Decrypting Archives) using shared secrets. This is one of the hotest encryption products on the market for encrypting and securely transmitting data from point A to point B. Unlike SSL orVPN,sure, the data is encrypted in route, but PGP will also keep the data encrypted AFTER it has arrived at it's destination and will only be decrypted when the recipiant wants it to be decrypted. www.pgp.com -----Original Message----- From: Marcus J. Ranum To: TDyson () sybex com; firewall-wizards () nfr com Sent: 11/11/00 9:29 AM Subject: Re: [fw-wiz] General security question TDyson () sybex com wrote:We are debating communication protocols: sockets connection or ftp.I'd strongly recommend you look at using SSH and SCP (Secure Copy) It doesn't have FTP's horrible security properties and it provides link level encryption and public keys as an option. There are free versions available for download, so it's hard to beat the price. See www.openssh.org for details. mjr. --- Marcus J. Ranum Chief Technology Officer, NFR Security, Inc. Work: http://www.nfr.com Play: http://pubweb.nfr.net/~mjr _______________________________________________ firewall-wizards mailing list firewall-wizards () nfr com http://www.nfr.com/mailman/listinfo/firewall-wizards _______________________________________________ firewall-wizards mailing list firewall-wizards () nfr com http://www.nfr.com/mailman/listinfo/firewall-wizards_______________________________________________ firewall-wizards mailing list firewall-wizards () nfr com http://www.nfr.com/mailman/listinfo/firewall-wizards
Attachment:
smime.p7s
Description: S/MIME Cryptographic Signature
Current thread:
- Re: General security question, (continued)
- Re: General security question Todd Joseph (Nov 13)
- Re: General security question Frederick M Avolio (Nov 13)
- Re: General security question Stephen P. Berry (Nov 13)
- RE: General security question Loomis, Rip (Nov 13)
- RE: General security question Jensen, Greg (Nov 13)
- Re: General security question George Capehart (Nov 13)
- Re: General security question daN. (Nov 15)
- Re: General security question Magosányi Árpád (Nov 15)
- Re: General security question daN. (Nov 15)
- Re: General security question George Capehart (Nov 13)
- Re: General security question istong (Nov 13)
- Re: General security question H. Morrow Long (Nov 14)