1. Forum
  2. Usenet
  3. COMP.MISC

  • big thanks to

    From Wolfgang Agnes@21:1/5 to All on Fri Nov 8 11:18:52 2024
    XPost: comp.unix.programmer, comp.unix.bsd.freebsd.misc

    I wanted to send a

    BIG THANKS

    to

    Jan Mojžíš

    for having written

    https://github.com/janmojzis/tlswrapper

    which is a TLS wrapper written in the UNIX way. I've been looking for a program like that for a little while to be able to continue to use
    Daniel J. Bernstein's tcpserver (wrapped in TLS).

    And another thank-you for the fact that tlswrapper can read a single
    file including the full chain of certificates and the private key of the server.

    (*) FreeBSD

    I could not find a precompiled package of tlswrapper in FreeBSD's pkg collection. Perhaps I should make that contribution.

    (*) The ucspi-ssl package

    There's sslserver from the ucspi-ssl package at

    https://www.fehcom.de/ipnet/ucspi-ssl.html

    but it hasn't been easy to compile it.

    (*) inetd and xinetd

    I did look at the current state of affairs of inetd and xinetd and it
    looks like they ignore TLS completely. Perhaps they shouldn't?

    --- SoupGate-Win32 v1.05
    * Origin: fsxNet Usenet Gateway (21:1/5)
  • From Lawrence D'Oliveiro@21:1/5 to Wolfgang Agnes on Fri Nov 8 21:16:42 2024
    XPost: comp.unix.programmer, comp.unix.bsd.freebsd.misc

    On Fri, 08 Nov 2024 11:18:52 -0300, Wolfgang Agnes wrote:

    (*) inetd and xinetd

    I did look at the current state of affairs of inetd and xinetd and it
    looks like they ignore TLS completely. Perhaps they shouldn't?

    If you look at the tlswrapper docs, you’ll see that it can be invoked via inetd (or systemd), and it in turn wraps the actual service process.

    --- SoupGate-Win32 v1.05
    * Origin: fsxNet Usenet Gateway (21:1/5)
  • From Wolfgang Agnes@21:1/5 to Wolfgang Agnes on Fri Nov 8 20:45:51 2024
    XPost: comp.unix.programmer, comp.unix.bsd.freebsd.misc

    Lawrence D'Oliveiro <ldo@nz.invalid> writes:

    On Fri, 08 Nov 2024 11:18:52 -0300, Wolfgang Agnes wrote:

    (*) inetd and xinetd

    I did look at the current state of affairs of inetd and xinetd and it
    looks like they ignore TLS completely. Perhaps they shouldn't?

    If you look at the tlswrapper docs, you’ll see that it can be invoked via inetd (or systemd), and it in turn wraps the actual service process.

    That makes sense.

    --- SoupGate-Win32 v1.05
    * Origin: fsxNet Usenet Gateway (21:1/5)