[openssl.org #37] Server-Client (SSL & nonSSL)

[Lutz Jaenicke via RT]

[[EMAIL PROTECTED] - Wed May 15 13:25:14 2002]:

> Hi!
> 
> i use Your project in my Client-Server project.
> For example, my Server calls BIO functions to use opened socket
> for handshaking , after that init_ssl_connection and everything works
fine.
> But what will happen if i'll try to use client without SSL stuff ?
> My task is create SSL Server which can work with SSL Client and NonSSL
> Client.
> Is there any possibilities to do this using Your SSL API ?
> 
> P.S.
> I suppose i can't because in source i found:
> #define readsocket(s,b,n) recv((s),(b),(n),0)
> it seems You don't work with MSG_PEEK or something like that.
> 
> 
> Best regards,
> Anatoly.

I am not sure that I understand your request. If you mean, that
you would like to use the same code on the server side:
you can also use the BIO layer without any encryption, it is
just the initialization that is different.

Best regards,
   Lutz
__
OpenSSL Project http://www.openssl.org
Development Mailing List   [EMAIL PROTECTED]
Automated List Manager   [EMAIL PROTECTED]

[openssl.org #37] Server-Client (SSL & nonSSL)

[Georg Bisseling via RT]

What Anatoly is asking is the following:

You might want to set up a server that does
not know in advance if the client that it is
accepting will use SSL or not.

For some reasons there maybe client programs 
that speak the application protocol without 
using SSL that cannot be modified.

These clients could be _weakly_ authenticated
for example by getting their IP address with
getpeername() and looking up if nonSSL clients
are allowed from this particular address.

Anatoly and I would very much appreciate some
hints how to do that with the current OpenSSL
API.

Regards
Georg Bisseling

__
OpenSSL Project http://www.openssl.org
Development Mailing List   [EMAIL PROTECTED]
Automated List Manager   [EMAIL PROTECTED]