Re: Web server updates and secure ac

["Simon J. Gerraty" <sjg @ zen . quick . com . au>]

Lawrence Lerner writes:
>  I am looking for solutions or ideas on how to securely update a Web
>  server that is located on the outside of a firewall from a host or
>  workstation on the inside.  

I believe there is an rdist on ssh package.

If you prefer SSL, I'm testing my SSLrdist as I write...
Yep, rdist and rsh that don't use hosts.equiv or .rhosts, don't waste
time with reserved ports and don't need to run as root.

I like SSL becuase each machine only needs a copy of your CA cert, so
key management seems more scalable than some alternatives. 

When its actually available for public consumption, I'll let you know.

One other option is to use my secure? NFS server - but its pretty
slow. ftp://ftp.quick.com.au/pub/security/unfs/ (must change that name)


--sjg
-- 
Simon J. Gerraty        <sjg @
 zen .
 void .
 oz .
 au>

#include <disclaimer>   /* imagine something _very_ witty here */