Re: Ada program needs to ping another machine.

[Preben Randhol <randhol+abuse@pvv.org>]

On 17 Jan 2002 20:56:14 GMT, Gisle S�lensminde wrote:
> 
> Cryptography is very difficult to get right, and you should not try to
> design it yourself but rely on existing. Even using existing technology
> is not without potential problems, and without understanding of how and
> why the system is secure you may make the system unsecure. 

Yes.

> I can think of several strategies for doing this
> 
> You could use the SSL/TLS protocol and flush the socket for each byte
> you type. The TLS protocol should be secure in this case as well. 
> Even though the TLS protocol is tcp-based, you should be able to use
> the protocol. This also make it possible to authenticate the peers
> at startup of the protocol. In practice you can use the openssl library
> to do the cryptography. The AWS web server use the openssl library to
> implement the TLS/SSL layer of the https protocol. You could use 
> the AWS source as an example. Another example is the kerberos protocol.
> I would recomend this strategy. 

I think so too. SSL is usually also installed on different systems so it
would be easier to use. 

Preben
-- 
 ()   Join the worldwide campaign to protect fundamental human rights.
'||}
{||'                                           http://www.amnesty.org/