www.ClassicTW.com :: View topic - Will TWGS SSL ever be supported?

Singularity wrote:

Better authentication would be very nice.

However, if you want to force SSL, you can do so using...
http://www.stunnel.org/

And a firewall. Setup stunnel to route all traffic to TWGS,
then firewall the regular twgs port to the outside world.
Then only ppl coming in via SSH could get in. You can
also use stunnel in reverse to get twxproxy and swath
access to ssh as needed.

There's no way you can know with 100% certainty that
someone is who they say they are, but you can add layers
of complication to the process. An email address and a
phone number, along with a call to that number, for
each person, would make it a lot more difficult to dupe
and stuff.

The problem with dual-key encryption is the need to
authenticate both parties via some previous trust factor.

Author:	corvey [ Wed Feb 13, 2013 11:01 am ]
Post subject:	Will TWGS SSL ever be supported?
Will TWGS ever make the leap in to SSL? I feel as though TW assets should be on a higher security level so breaches won't ever infiltrate my server, bases or products via visible telnet transmissions. I am getting more paranoid about network security these days. P.S. Yes, the security of my TW assets are mission critical.

Author:	Helix [ Wed Feb 13, 2013 2:28 pm ]
Post subject:	Re: Will TWGS SSL ever be supported?
There has been a lot of talk of using SSH, (ssl is for secure html) Look here for the discussion.... viewtopic.php?f=58&t=32807

Author:	corvey [ Thu Feb 14, 2013 12:11 pm ]
Post subject:	Re: Will TWGS SSL ever be supported?
Any type of secure shell would be good.

Author:	Micro [ Thu Feb 14, 2013 7:52 pm ]
Post subject:	Re: Will TWGS SSL ever be supported?
You can easily set this up with 3rd party software.

Author:	corvey [ Fri Feb 15, 2013 9:11 am ]
Post subject:	Re: Will TWGS SSL ever be supported?
Right and Swath would need to be that third party along TWGS supporting SSH.

www.ClassicTW.com http://www.classictw.com/

Will TWGS SSL ever be supported? http://www.classictw.com/viewtopic.php?f=1&t=33742	Page 1 of 1

Author:	Micro [ Fri Feb 15, 2013 11:20 pm ]
Post subject:	Re: Will TWGS SSL ever be supported?
No, neither of those parties are likely to do it any time soon, but you can do it now. I'm talking about this: Subject: SSH helper Singularity wrote: Better authentication would be very nice. However, if you want to force SSL, you can do so using... http://www.stunnel.org/ And a firewall. Setup stunnel to route all traffic to TWGS, then firewall the regular twgs port to the outside world. Then only ppl coming in via SSH could get in. You can also use stunnel in reverse to get twxproxy and swath access to ssh as needed. There's no way you can know with 100% certainty that someone is who they say they are, but you can add layers of complication to the process. An email address and a phone number, along with a call to that number, for each person, would make it a lot more difficult to dupe and stuff. The problem with dual-key encryption is the need to authenticate both parties via some previous trust factor.

Page 1 of 1	All times are UTC - 5 hours
Powered by phpBB © 2000, 2002, 2005, 2007 phpBB Group http://www.phpbb.com/