Security Basics mailing list archives
Re: secure transfers and authentication
From: Ansgar -59cobalt- Wiechers <bugtraq () planetcobalt net>
Date: Thu, 3 Apr 2008 17:00:29 +0200
On 2008-04-02 mgk.mailing () googlemail com wrote:
I was wondering if anyone had run across anything that would help with my current project. I am looking to automate transfers over an insecure network where both the client and server are authenticated to each other. My current line of thinking is using ssl signed certificates from our Certificate authority to do the authentication and then https to transfer the data. Putting aside that http may not be the best transfer mechanism for data can anyone make any suggestions or point out any potential pitfalls that maybe there? It is vital that the transfer is protected and that the client and server is authenticated.
Is there a particular reason why you're re-sending this after you already got answers from Saqib Ali and Francisco Neira Basso? Regards Ansgar Wiechers -- "All vulnerabilities deserve a public fear period prior to patches becoming available." --Jason Coombs on Bugtraq
Current thread:
- Re: secure transfers and authentication, (continued)
- Re: secure transfers and authentication mgk.mailing (Apr 02)
- Message not available
- Re: secure transfers and authentication mgk.mailing (Apr 03)
- Re: secure transfers and authentication Francisco Neira Basso (Apr 03)
- Re: secure transfers and authentication Ali, Saqib (Apr 03)
- Message not available
- Re: secure transfers and authentication Ali, Saqib (Apr 03)
- RE: secure transfers and authentication Murda Mcloud (Apr 03)
- Re: secure transfers and authentication Ansgar -59cobalt- Wiechers (Apr 03)