Home page logo

basics logo Security Basics mailing list archives

Re: Re: secure transfers and authentication
From: mgk.mailing () googlemail com
Date: 4 Apr 2008 13:25:24 -0000

On 2008-04-02 mgk.mailing (at) googlemail (dot) com [email concealed] wrote:
I was wondering if anyone had run across anything that would help with
my current project. I am looking to automate transfers over an
insecure network where both the client and server are authenticated to
each other. My current line of thinking is using ssl signed
certificates from our Certificate authority to do the authentication
and then https to transfer the data. Putting aside that http may not
be the best transfer mechanism for data can anyone make any
suggestions or point out any potential pitfalls that maybe there? It
is vital that the transfer is protected and that the client and server
is authenticated.

Is there a particular reason why you're re-sending this after you
already got answers from Saqib Ali and Francisco Neira Basso?

Ansgar Wiechers
"All vulnerabilities deserve a public fear period prior to patches
becoming available."
--Jason Coombs on Bugtraq

Sorry, i'm not sure whats going on.  I get bounce backs saying im not allowed to post so then do it via the webform, 
but it then seems to accept the message....

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]