home
***
CD-ROM
|
disk
|
FTP
|
other
***
search
/
Columbia Kermit
/
kermit.zip
/
newsgroups
/
misc.20010306-20010921
/
000071_news@columbia.edu _Sun Apr 22 17:03:19 2001.msg
< prev
next >
Wrap
Internet Message Format
|
2020-01-01
|
3KB
Return-Path: <news@columbia.edu>
Received: from newsmaster.cc.columbia.edu (newsmaster.cc.columbia.edu [128.59.59.30])
by uhaligani.cc.columbia.edu (8.9.3/8.9.3) with ESMTP id RAA12157
for <kermit.misc@cpunix.cc.columbia.edu>; Sun, 22 Apr 2001 17:03:19 -0400 (EDT)
Received: (from news@localhost)
by newsmaster.cc.columbia.edu (8.9.3/8.9.3) id QAA29532
for kermit.misc@watsun.cc.columbia.edu; Sun, 22 Apr 2001 16:53:00 -0400 (EDT)
X-Authentication-Warning: newsmaster.cc.columbia.edu: news set sender to <news> using -f
From: fdc@columbia.edu (Frank da Cruz)
Subject: Re: Secure File transfer Please reply via email
Date: 22 Apr 2001 20:52:58 GMT
Organization: Columbia University
Message-ID: <9bvgba$sqp$1@newsmaster.cc.columbia.edu>
To: kermit.misc@columbia.edu
In article <4416878.EvYhyI6sBW@ac.lisse.na>,
Eberhard W Lisse <el@lisse.NA> wrote:
: On Tuesday 17 April 2001 20:23 Michael Witherington wrote:
: > I need to initiate a secure file transfer from a linux machine using
: > C-Kermit 6.0.192 to a windows machine running Kermit 95.
:
: ssh
:
No, believe it or not, ssh is not the answer to every question. Michael
worded his question carefully, specifying the software and versions that
he has available, which happen to be scattered over hundreds locations.
The real answer is: there is no way to accomplish secure transfers using
the software combinations that he has available, not without installing
additional software of some kind (something he did not wish to do because
of the many scattered sites). Since additional software must be installed,
it might as well be C-Kermit 7.0 (or soon 7.1) which supports the same
security methods as the current Kermit 95 release. These are described
here:
http://www.columbia.edu/kermit/security.html <-- C-Kermit 7.0
http://www.columbia.edu/kermit/security71.html <-- C-Kermit 7.1
Also, as noted previously, we do not believe SSH is a particularly safe
or reliable security method compared to the ones supported by Kermit,
which are Kerberos 4 and 5, SSL/TLS, and SRP. Some of the reasons are
listed here:
http://www.columbia.edu/kermit/ckfaq.html#ssh
This does not mean we won't be adding SSH 2 (and maybe 1) support in
future Kermit releases. The requests for it have been defeaning and
arguments against it are futile. But if we do add it, we will describe
the pitfalls in the documentation rather than painting it as some kind of
ultimate security solution.
- Frank