From owner-freebsd-questions@FreeBSD.ORG  Sat Jun  7 10:30:21 2003
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 34B6437B401
	for <questions@freebsd.org>; Sat,  7 Jun 2003 10:30:21 -0700 (PDT)
Received: from out004.verizon.net (out004pub.verizon.net [206.46.170.142])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 62B0543FBD
	for <questions@freebsd.org>; Sat,  7 Jun 2003 10:30:20 -0700 (PDT)
	(envelope-from cswiger@mac.com)
Received: from mac.com ([141.149.47.46]) by out004.verizon.net
          (InterMail vM.5.01.05.33 201-253-122-126-133-20030313) with ESMTP
          id <20030607173019.SEPR246.out004.verizon.net@mac.com>;
          Sat, 7 Jun 2003 12:30:19 -0500
Message-ID: <3EE22126.50703@mac.com>
Date: Sat, 07 Jun 2003 13:30:14 -0400
From: Chuck Swiger <cswiger@mac.com>
Organization: The Courts of Chaos
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US;
	rv:1.4) Gecko/20030529
X-Accept-Language: en-us, en
MIME-Version: 1.0
To: Bingrui Foo <foob@purdue.edu>
References: <Pine.SOL.4.51.0306070449340.19465@herald.cc.purdue.edu>
In-Reply-To: <Pine.SOL.4.51.0306070449340.19465@herald.cc.purdue.edu>
Content-Type: text/plain; charset=us-ascii; format=flowed
Content-Transfer-Encoding: 7bit
X-Authentication-Info: Submitted using SMTP AUTH at out004.verizon.net from
	[141.149.47.46] at Sat, 7 Jun 2003 12:30:19 -0500
cc: questions@freebsd.org
Subject: Re: Question about insecure server
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>,
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>,
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Sat, 07 Jun 2003 17:30:21 -0000

Bingrui Foo wrote:
[ ... ]
> I'm wondering is there a way to use ssh instead of telnet to connect to my
> chat server to make the connection secure?
> 
> Do I have to modify the C socket code to somehow allow people to ssh into
> it? Or is there another way. I have no idea how to make it secure.

You can change your C code to use the OpenSSL library; if you do that, you have 
the option of then negotiating STARTTLS and thus support both encrypted and 
non-encrypted connections on the same listening socket.

However, it might be much easier to install /usr/ports/security/stunnel, and use 
that to "wrap" your program.

-Chuck