Date: Tue, 28 Dec 1999 09:55:49 -0500 (EST) From: Robert Watson <robert@cyrus.watson.org> To: "Kurt D. Zeilenga" <kurt@boolean.net> Cc: freebsd-security@freebsd.org Subject: Re: bjorb vs sslproxy vs stunnel Message-ID: <Pine.BSF.3.96.991228095337.46232A-100000@fledge.watson.org> In-Reply-To: <3.0.5.32.19991224135854.00948d70@localhost>
next in thread | previous in thread | raw e-mail | index | archive | help
Don't have any experience with bjorb or stunnel, but I do remember finding that sslproxy doesn't correctly reap fork()'d zombie children, resulting in large numbers of zombies on a production machine. This was a couple of months ago, so it may have been fixed since then, but it wasn't very entertaining. You might also consider SSH for tunneling if you allow users to have accounts on your machine (i.e., SSH requires them to log in before providing tunneling services) -- this is a common arrangement with CVS where they will need to authenticate anyway. I hope to give stunnel a try shortly in the hopes that it is better than sslproxy :-). On Fri, 24 Dec 1999, Kurt D. Zeilenga wrote: > I am looking at using an SSL proxy to provide > privacy protection for a variety of services > including CVS. There are at least three differnet > packages available in the ports collection that > provide SSL tunneling services. > > Does anyone know of or have a decent, up-to-date > comparative review of these packages? > > TIA, Kurt > > ---- > Kurt D. Zeilenga <kurt@boolean.net> > Net Boolean Incorporated <http://www.boolean.net/>; > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-security" in the body of the message > Robert N M Watson robert@fledge.watson.org http://www.watson.org/~robert/ PGP key fingerprint: AF B5 5F FF A6 4A 79 37 ED 5F 55 E9 58 04 6A B1 TIS Labs at Network Associates, Safeport Network Services To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.3.96.991228095337.46232A-100000>