Security Basics mailing list archives

Re: Clientless VPN (SSL VPN) vs HTTPS

From: "Saqib Ali" <docbook.xml () gmail com>
Date: Fri, 11 Aug 2006 08:19:12 -0700

SSL VPN is a basically a reverse proxy that works over HTTPS. Most SSL
VPN, with the help of a light weight client side application, can
tunnel any kind of traffic (e.g. SSH, netmeeting, lotus notes, etc).

SSL VPN != HTTPS

A reverse proxy is a gateway for servers, and enables one web server
to provide content from another transparently. As with a standard
proxy, a reverse proxy may serve to improve performance of the web by
caching; this is a simple way to mirror a website. But the most common
reason to run a reverse proxy is to enable controlled access from the
Web at large to servers behind a firewall.

Reverse proxying (SSL VPN) into an intranet imporves the security of
the network. You are not connecting directly to your server, instead
you are connecting to a proxy server, which can be configred to
analyze the traffic and stop any hacking attempts.


On 8/10/06, harbinger <bluetooth995 () gmail com> wrote:

Hi

These days SSL VPN has been the alternative to
the tradition IPsec VPN, particularly for users that
require only email access.

However, what is the different in implementing SSL VPN -
which essentially means allowing only webbased traffic i.e webmail,
as compare to just to setup a webmail server running HTTPS.

Can anyone point out the differences??

Thanks

---------------------------------------------------------------------------
This list is sponsored by: Norwich University

EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE
The NSA has designated Norwich University a center of Academic Excellence
in Information Security. Our program offers unparalleled Infosec management
education and the case study affords you unmatched consulting experience.
Using interactive e-Learning technology, you can earn this esteemed degree,
without disrupting your career or home life.

http://www.msia.norwich.edu/secfocus
---------------------------------------------------------------------------



--
Saqib Ali, CISSP, ISSAP
Support http://www.capital-punishment.net
-----------
"I fear, if I rebel against my Lord, the retribution of an Awful Day
(The Day of Resurrection)" Al-Quran 6:15
-----------

---------------------------------------------------------------------------
This list is sponsored by: Norwich University

EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE

The NSA has designated Norwich University a center of Academic Excellencein Information Security. Our program offers unparalleled Infosec managementeducation and the case study affords you unmatched consulting experience.Using interactive e-Learning technology, you can earn this esteemed degree,without disrupting your career or home life.


http://www.msia.norwich.edu/secfocus
---------------------------------------------------------------------------

Current thread:

Clientless VPN (SSL VPN) vs HTTPS harbinger (Aug 11)
- Re: Clientless VPN (SSL VPN) vs HTTPS Eoin Miller (Aug 14)
- Re: Clientless VPN (SSL VPN) vs HTTPS PCSC Information Services (Aug 14)
- Re: Clientless VPN (SSL VPN) vs HTTPS Saqib Ali (Aug 14)
- Re: Clientless VPN (SSL VPN) vs HTTPS Joe (Aug 14)
- RE: Clientless VPN (SSL VPN) vs HTTPS Melchior, Raimar (Aug 14)
- Re: Clientless VPN (SSL VPN) vs HTTPS Christopher Stromblad (Aug 15)
- <Possible follow-ups>
- Re: Clientless VPN (SSL VPN) vs HTTPS bhaven . haria (Aug 14)
- RE: Clientless VPN (SSL VPN) vs HTTPS Wesley Ward (Aug 14)