Maybe set up Apache to do an SSL proxy from the ASSP port to some other port. A reverse SSL proxy is very easy to set up: http://www.google.com/search?hl=en&source=hp&q=apache+ssl+reverse+proxy&aq=0&oq=apache+ssl+rev&aqi=g1 -- Scott * If you contact me off list replace talklists@ with scott@ *
On Jan 3, 2010, at 5:21 PM, Valeri Galtsev wrote: > Hello, > > Could someone point me to the way I can encrypt traffic on the web admin > interface. > > The best I found on the Wiki is stunnel: > > http://sourceforge.net/apps/mediawiki/assp/index.php?title=Debian#ASSP_web_interface_over_SSL > > which allows to encrypt traffic to the machine from network, but still the > same traffic on the machine is sniffable by local users. > > I don't want to spare dedicated machine (or virtual machine) with no user > logins for hosting assp only (and I don't want to sophisticate my DNS > records); and I do have to allow shell logins to my e-mail servers (which > will host assp once all is sorted out), and although users on mail servers > are only able to execute binaries installed by sysadmin, I still prefer to > keep local traffic encrypted (except for what travels on the Internet > unencrypted anyway...) > > Thanks for all your help, ------------------------------------------------------------------------------ This SF.Net email is sponsored by the Verizon Developer Community Take advantage of Verizon's best-in-class app development support A streamlined, 14 day to market process makes app distribution fast and easy Join now and get one step closer to millions of Verizon customers http://p.sf.net/sfu/verizon-dev2dev _______________________________________________ Assp-user mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/assp-user
