On Feb 12, 9:56pm, "Priscilla Oppenheimer" wrote: } Bruno Fernandes wrote: } } > Does SSH works on top of SSL } } I don't think so.
Yes, it does. } > or is SSH an application with its } > protocol } > implementation ? } } SSH is its own application with a differenet goal than SSL. SSH is similar SSH is an application layer protocol. SSL is a presentation layer protocol, not an application. Since they are at different layers, they are not mutually exclusive. } to Telnet and RLOGIN and runs directly above TCP, using TCP port 22. Here's SSH runs over SSL, which runs over TCP. The TCP port number used is selected by the application. } Here's what Webopaedia says about SSL: } } Secure Sockets Layer (SSL) is a protocol developed by Netscape for The fact that it is a "Layer" should say something. More to the point, it is a presentation layer protocol that provides encryption services. It may have been developed by Netscape for use with "secure"* web sites, but that doesn't mean that other people can't use it for other things. It is documented. A lot of things use it. It is used by SSH, secure POP, secure SMTP, etc. Of course, you won't see this unless you develope applications or build them from source. This sort of thing is usually only noticed by programmers. * I put the word, secure, in quotes, because it is a misnomer. It is not the web site that is being secured, but rather the transport. The security of the website depends on the security of the systems from which it is served. There are quite a few "secure" web sites that aren't secure at all due to bad CGI scripts or just sloppy administration. It is often easier to just break into the web server, then it is to sniff the data in transit then try to decode it. Unfortunately, there has been so much hype about encrypted transport with very little said about the security of the server that most people have been snowed. (Just my rant for the day.) }-- End of excerpt from "Priscilla Oppenheimer" Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=55666&t=53869 -------------------------------------------------- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]