Ross I don't think it makes any difference whether you regularly refresh the connection. The main issue is that any access to the port must be thoroughly authenicated before sending any response.
A system we use has the following characteristics: The client connects and sends a blind packet containg 2 random numbers with the same checksum. If the first packet received by the server on a connection has 2 numbers with the same checksum it replies with a 5 character string. Otherwise it disconnects with no message. All subsequent incoming packets must begin with a rolling sequence of the string. We do a basic encryption of all packet contents, but this is secondary to the packet identification. It may sound simplistic, but we have no recorded intrusions to date. The other issue is that the server MUST be running at all times, otherwise the port is availble through the firewall and is handled by the default Windows handler = bad news. HTH Stephen -----Original Message----- From: Ross Levis [mailto:[EMAIL PROTECTED] Sent: Saturday, 1 May 2004 11:15 a.m. To: NZ Borland Developers Group - Delphi List Subject: Re: [DUG] 2-way communication The communications program I'm writing will be used to remotely monitor the automation software running a radio station in a studio somewhere. Sometimes via a local network and sometimes remotely over the internet. Are there any security issues keeping a port open over the internet for a long period of time, perhaps weeks? I was just wondering if it would be advisable to disconnect/reconnect every few minutes so a different port is used. Cheers, Ross Levis StationPlaylist.com http://www.stationplaylist.com _______________________________________________ Delphi mailing list [EMAIL PROTECTED] http://ns3.123.co.nz/mailman/listinfo/delphi Disclaimer : This communication contains information that is confidential and the copyright of ensynergy Limited or a third party. If you are not the intended recipient of this communication please delete and destroy all copies and telephone ensynergy Limited on +64 9 3551591 immediately. If you are the intended recipient of this communication you should not copy, disclose or distribute this communication without the authority of ensynergy Limited. Any views expressed in this communication are those of the individual sender, except where the sender specifically states them to be the views of ensynergy Limited. Except as required by law, ensynergy Limited does not represent, warrant and/or guarantee that the integrity of this communication has been maintained nor that the communication is free of errors, virus, interception or interference. _______________________________________________ Delphi mailing list [EMAIL PROTECTED] http://ns3.123.co.nz/mailman/listinfo/delphi
