On Tuesday Feb 6,1996, Jas (Matthew K) wrote ---
<snip>.... RPC can be secured, and quite
>easily at that _if_ you know wht you are doing... punching it through
>a firewall can be difficult, but you can get RPC to do things like a)
>force it to use one and only one port, b) force it to use only TCP, c)
>turn on authentification, and fold in encryption. <snip>
>
>***Matt
>
>p.s. i have no qualms in saying that some of the current
>implementations of RPC servers are insecure (like NFS if not done
>with SecureNFS or with kerberos)..
This may be slightly off topic from pure firewalls discussion and I
apologize
but I may also be in a position where I will be asked to allow RPC through
a firewall. Sessions would be from a variety of platforms to a protected MVS
host.
I am able to address Matts' points A, B, and C (authentication only)
but I have come up empty in a search for _interactive_ session
encryption products that run on an MVS host. Link level encryption
is recognized as the only current option .
Any suggestions? Thanks all.
Bob Runte - NMB
State of Wi - Dept of Admin
|
|
