[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [cobalt-security] Admin Site w/ SSL (WAS: SSH Tunneling - Cheap client to use?)

Subject: Re: [cobalt-security] Admin Site w/ SSL (WAS: SSH Tunneling - Cheap client to use?)
From: Ted Behling <TBehling@xxxxxxxxxxxxx>
Date: Sun, 19 Aug 2001 01:48:39 -0400
List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>

At 07:34 PM 8/19/01 +0200, Kai Schantz, Euroweb wrote:
>I did that on a Raq3i and a Raq4r after 2 days I had to remove it because so
>many customer complaint. Netscape could not handle it at all. Netscape
>advised every visitors to not use the different websites because there where
>something wrong with the certificate. If you still wanted to go ahead
>Netscape forced the visitor thru 7 steps of confirming that they wanted to
>see these WebPages!! MIE did not find anything wrong and just popup 1 time
>saying that there was a new certificate and if user wanted to accept and
>store it.

There is indeed "something wrong" with the cert -- it's not signed by a
recognized third-party.

I use Netscape 4.75 almost exclusively (sometimes Opera), and it does
require a rather involved series of dialogs when the site uses a
self-signed certificate.  After you do that process once, you don't have to
do it again for that site.

Not using SSL for your admin site is suicidal.  You're sending your admin
(and hence, root) password and all you configuration data over the wire in
plaintext.  If you're hosing multiple customers' virtual sites on your
server, you should invest in a signed certificate.

>But what finally forced me to uninstall was that on virtual sites that used
>subdirs Netscape renamed all WebPages in subdirectories to SHTML and this
>caused the pages not to be correctly displayed. I posted for help on the
>developerlist and cobalt support nobody could help because it was a Netscape
>problem they said.Best regards

Are you saying Netscape's FTP uploader did this?  What version of Netscape
does this, and under what circumstances?

--------------------------------------------------------------------------
Ted Behling, Web Application Developer - Monarch Information Systems, Inc.

43 Folly Field Road, Unit 4, Hilton Head Island, SC 29928-5434
E-mail: mailto:TBehling@xxxxxxxxxxxxx
Phone/Fax: 1-800-842-7894    Local or Outside the USA: 1-843-842-7894
Cell Phone (urgent issues): 843-816-7895
Cell Phone E-mail: mailto:TedPhone@xxxxxxxxxxxxx (116 letter limit)
Web site: http://www.MonarchIS.net
--------------------------------------------------------------------------

Follow-Ups:
- Re: [cobalt-security] Admin Site w/ SSL (WAS: SSH Tunneling - Cheap client to use?)
  - From: Michael Stauber
- SV: [cobalt-security] Admin Site w/ SSL (WAS: SSH Tunneling - Cheap client to use?)
  - From: Kai Schantz, Euroweb

References:
- Re: [cobalt-security] SSH Tunneling - Cheap client to use?
  - From: Michael Stauber
- SV: [cobalt-security] SSH Tunneling - Cheap client to use?
  - From: Kai Schantz, Euroweb

Prev by Date: Re: [cobalt-security] Telent 0.17 Update
Next by Date: Re: [cobalt-security] Telent 0.17 Update
Previous by thread: SV: [cobalt-security] SSH Tunneling - Cheap client to use?
Next by thread: Re: [cobalt-security] Admin Site w/ SSL (WAS: SSH Tunneling - Cheap client to use?)

Sun Cobalt Security Message Index

Sun Cobalt Security Thread Index