Tom Petch wrote:
In the context of isms, ie SNMP, the choice was SSH v TLS + SASL; TLS provides
the security but not the authentication while SSH does both. And SSH is a
well-established protocol.
I agree that TLS/SSL is the most widely used but that is because more people
access websites (securely) than access network devices. If you limit yourself
to network operations of network devices, then it appears to be
SSH a significant number
TLS so small as to be invisible
A couple of comments -
I disagree that TLS is rare. TLS is common, in my experience, because
many devices have web-based management interfaces and those are secured with
TLS.
Also, if your logic were correct, then all those SASL folks who hassled us
TLS people into going with STARTLS/SASL/etc must have been wrong - this
is one of those "the IETF can't declare both 1 and 0 to be truth, depending
on which RFC you read" problems.
OTOH you are using SOME standard protocol so I'm fine with SSH...
_______________________________________________
Syslog mailing list
Syslog@lists.ietf.org
https://www1.ietf.org/mailman/listinfo/syslog
