On Feb 12, 9:56pm, "Priscilla Oppenheimer" wrote:
} Bruno Fernandes wrote:
}
} > Does SSH works on top of SSL
}
} I don't think so.
Yes, it does.
} > or is SSH an application with its
} > protocol
} > implementation ?
}
} SSH is its own application with a differenet goal than SSL. SSH is similar
SSH is an application layer protocol. SSL is a presentation layer
protocol, not an application. Since they are at different layers, they
are not mutually exclusive.
} to Telnet and RLOGIN and runs directly above TCP, using TCP port 22. Here's
SSH runs over SSL, which runs over TCP. The TCP port number used
is selected by the application.
} Here's what Webopaedia says about SSL:
}
} Secure Sockets Layer (SSL) is a protocol developed by Netscape for
The fact that it is a "Layer" should say something. More to the
point, it is a presentation layer protocol that provides encryption
services.
It may have been developed by Netscape for use with "secure"* web
sites, but that doesn't mean that other people can't use it for other
things. It is documented. A lot of things use it. It is used by SSH,
secure POP, secure SMTP, etc. Of course, you won't see this unless you
develope applications or build them from source. This sort of thing is
usually only noticed by programmers.
* I put the word, secure, in quotes, because it is a misnomer. It is
not the web site that is being secured, but rather the transport. The
security of the website depends on the security of the systems from
which it is served. There are quite a few "secure" web sites that
aren't secure at all due to bad CGI scripts or just sloppy
administration. It is often easier to just break into the web server,
then it is to sniff the data in transit then try to decode it.
Unfortunately, there has been so much hype about encrypted transport
with very little said about the security of the server that most people
have been snowed. (Just my rant for the day.)
}-- End of excerpt from "Priscilla Oppenheimer"
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=55666&t=53869
--------------------------------------------------
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
