INN and SSL/TSL

Vitor Carlos Flausino vflausino at dti.pga.pt
Fri Oct 17 10:23:42 UTC 2003


Ok....
and how do I start it using rc.news?
thankx,
-vcf

Jeffrey M. Vinocur wrote:

>On Wed, 15 Oct 2003, Todd Olson wrote:
>
>  
>
>>Has support for SSL/TSL has been worked in to INN 2.4 ????
>>    
>>
>
>TLS, you mean.  And yes, it's been supported for ages, check the 
>documentation.
>
>In brief, we suppport both a not-yet-standardized STARTTLS command on top
>of regular port 119 connections, and nnrpd -S to listen on a separate port
>(port 563 is normal, listening either with inetd/xinetd, or with nnrpd -D
>to run in daemon mode).
>
>There's also a readers.conf parameter for restricting auth blocks to only
>apply to encrypted connections.
>
>
>  
>
>>Is anyone using it?
>>    
>>
>
>Sure, lots of people.
>
>
>  
>
>>What clients are being used?
>>    
>>
>
>There are only a few of the graphical clients that support SSL natively, 
>as far as I know.  Outlook Express, definitely.  I think Netscape.  Not 
>sure about Mozilla, but presumably.  There's some sort of support in Xnews 
>(Windows), but last time I looked at it -- three years ago -- it was a 
>little rough.
>
>
>  
>
>>Does it work of the client does some sort of ssl tunneling
>>with a non ssl enabled client?
>>    
>>
>
>Of course, there's no way to even tell that stunnel or whatever is being 
>used (with the nnrpd-on-separate-port approach, anyway).
>
>  
>




More information about the inn-workers mailing list