Re: opened OpenSSL port

To: erikmccaskey64 <erikmccaskey64@zoho.com>
Cc: debian-user@lists.debian.org
Subject: Re: opened OpenSSL port
From: Jeffrin Jose <ahiliation@yahoo.co.in>
Date: Mon, 28 Feb 2011 01:15:49 +0530
Message-id: <[🔎] 20110227194549.GA4864@debian.Jeff>
In-reply-to: <[🔎] 12e6686ab0d.-3940210638885655683.1742945720519014412@zoho.com>
References: <[🔎] 12e6686ab0d.-3940210638885655683.1742945720519014412@zoho.com>

On Sun, Feb 27, 2011 at 01:50:24AM -0800, erikmccaskey64 wrote:
> Main question: is it safe, to open a port for an openssl server? 

It may be safe not to open a port because it can cause attacks.
It may not be safe to close a port because you may not be able to run the service.
So it may be safe to open and protect yourself.

> Is it secure? - it could be DOSed' [DenialofService] or could it be attacked in any way?

http://en.wikipedia.org/wiki/Denial-of-service_attack

> Are there any iptables rule for restricting connections to dyndns names?

Look and see if the following link helps.
http://lists.netfilter.org/pipermail/netfilter/2002-March/031869.html

> How could i restrict the openssl server to only accept traffic from given clients? Please help me "think"..
> 
> Or are there any "production ready" methods, that can do authentication too? [+using ssl].
> "openssl s_server" and "openssl s_client" would be perfect, but the problem is it doesn't has username/password auth :\

http://www.vanemery.com/Linux/Apache/apache-SSL.html
Following the above may help you.

/Jeffrin.

-- 
software engineer.
department of computer science
rajagiri school of engineering and technology.

Reply to:

References:
- opened OpenSSL port
  - From: erikmccaskey64 <erikmccaskey64@zoho.com>

Prev by Date: Re: dd or cp over network: should I use scp?
Next by Date: Debian 6 64-bit and Openbox: Opinions, Suggestions, Pitfalls.
Previous by thread: opened OpenSSL port
Next by thread: weird font problem with white lines
Index(es):
- Date
- Thread