[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re[4]: [cobalt-security] Best way to check email securely? -- stunnel / openssl
- Subject: Re[4]: [cobalt-security] Best way to check email securely? -- stunnel / openssl
- From: Eugene Crosser <crosser@xxxxxxxxxxx>
- Date: Sun, 3 Mar 2002 11:29:32 +0300 (MSK)
- List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>
On Thu, 28 Feb 2002 19:12:19 +0000 APS <sculthorpe@xxxxxxxxxxxxx> wrote:
> Forget stunnel, use SSH2 and use port forwarding, then you can close
> port 110, 81, 21 etc and
> have them all tunneling via localhost using a decent protocol instead of
> lame SSL which can be
> cracked anyway.
1) SSH protocol and SSL are approximately equal in strength
(modulo different potential bugs in implementation).
2) Use of tunelling requires that you give the people shell
access to the host which you may not at all want to do.
Eugene