Home page logo

basics logo Security Basics mailing list archives

Re: secure transfers and authentication
From: Ansgar -59cobalt- Wiechers <bugtraq () planetcobalt net>
Date: Thu, 3 Apr 2008 17:00:29 +0200

On 2008-04-02 mgk.mailing () googlemail com wrote:
I was wondering if anyone had run across anything that would help with
my current project.   I am looking to automate transfers over an
insecure network where both the client and server are authenticated to
each other.  My current line of thinking is using ssl signed
certificates from our Certificate authority to do the authentication
and then https to transfer the data.  Putting aside that http may not
be the best transfer mechanism for data can anyone make any
suggestions or point out any potential pitfalls that maybe there?  It
is vital that the transfer is protected and that the client and server
is authenticated.

Is there a particular reason why you're re-sending this after you
already got answers from Saqib Ali and Francisco Neira Basso?

Ansgar Wiechers
"All vulnerabilities deserve a public fear period prior to patches
becoming available."
--Jason Coombs on Bugtraq

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]