MIDRANGE dot COM Mailing List Archive



Home » JAVA400-L » August 2010

Re: SSL FTP library?



fixed

Depends on your needs this may be more than you want...
but it is a very flexible approach.

We trust the clients in the LAN but we need to connect multiple LANs
over the internet,
each LAN has an iSeries... although we do support inside the lans
(rdesktop hosts)
the primary need is access to the iSeries for FTP, Samba, 5250, web...

We opted for a hardware solution. The particular hardware is "Sonic
Wall-SSL"...
It provides dedicated tunnels between the lans, and for the lans where
public
access is allowed by the company a user directs their browser at the
gateway IP and they get a sign on page which then installs a SSL client
and
signs them onto the network, so sales agents for instance can use 5250
sessions on the road.

There is no need for an FTP client to works with SSL... as SSL is a
transparent
detail to any protocol, at least in this scenario.

I'm sure there are other hardware solutions, the brand mentioned is more
of an enterprise solution while I'm sure there are more economical
options if you just want service for one machine. If you have an x86
server or good pc there are a number of free ssl server which you could
set up.


On Mon, 2010-08-23 at 10:29 -0500, David Gibbs wrote:

McKown, John wrote:
On other forums, there has sometimes been confusion between FTPS and
sftp. You're talking about "normal FTP", over an encrypted SSL
tunnel, correct? You are __not__ talking about sftp, which is a part
of SSH.

Yes, I'm talking Secure Sockets Layer ... with the ability to talk to a SSL enabled FTP server on an iSeries.

Also, from my limited understanding, if you can get an SSL tunnel
from point "a" to point "b", you can then do normal ftp over that SSL
tunnel. So it may be sufficient to get two things: an SSL library and
an ftp library and just use them together.

SSL tunnel requires a SSL tunnel server ... which, I'm pretty sure, the iSeries doesn't have.

I need to connect to a SSL enabled FTP server on the iSeries ... so I need a FTP client package that can handle SSL. iSeries specific support is not necessarily required, as I can work around that using IFS notation.

david

--
IBM i on Power Systems - For when you can't afford to be out of business








Return to Archive home page | Return to MIDRANGE.COM home page

This mailing list archive is Copyright 1997-2014 by MIDRANGE dot COM and David Gibbs as a compilation work. Use of the archive is restricted to research of a business or technical nature. Any other uses are prohibited. Full details are available here. If you have questions about this, please contact