Yes, I have done that - put the server out in the DMZ and had someone connect
CPRS to it, but I did not consider what I did to be secure. However, with
port forwarding (tunneling), and private key public key authentication, I
think it could be made secure. I think what you have done to CPRS combined
with port forwarding could solve the problem that Shaun Wagner had with the
rural hospitals that he was so frustrated with when the hospitals would not
support his use of CPRS.
On Saturday 12 February 2005 09:12 am, Kevin Toppenberg wrote:
> Nancy,
>
> I'm still not completely following you here. I think
> you are saying that you want to set up one server that
> everyone could connect to, so we could colaborate.
>
> The only need for port forwarding would be if the
> server is behind a firewall. But one could also make
> the server secure (i.e. shut down all insecure ports),
> and then specify to the firewall that this server is
> the DMZ server. All unexpected traffic would be sent
> to the server.
>
> I'm wondering if we are talking about the same thing
> when you use the term 'port forwarding'.
>
> Kevin
>
> --- Nancy Anthracite <[EMAIL PROTECTED]> wrote:
> > Just speculating on remote connections securely,
> > using open source resources,
> > over an Internet connection. I think port
> > forwarding would work, but for
> > that, you need a fixed port, so I am wondering about
> > whether or not there is
> > a way to do it without having to fix up and
> > recompile CPRSChart every time a
> > new one is released.
> >
> > Do you remember the post I passed on from Joel Ivey
> > around Dec 21 that made it sound as if that port
> > issue was going to be
> > addressed?
> >
> > ************************************
> > Subject: Re: CPRS and a single port
> >
> > > If it is not too complicated or confidential to
> >
> > explain, could you give me
> >
> > >an overview of your solution?
> >
> > None of our work, as far as I am concerned is
> > confidential. We release all
> > of our source code and appreciate any feedback as
> > well.
> >
> > The solution that we chose was to use a UCX-type
> > listener on the server (on
> > VAX and I believe GT.M) that does not require a
> > callback and is similar to
> > the type of connection made with telnet. This and
> > the use of different
> > initial headers ( {XWB} vs [XWB] (new style) vs
> > <XWB> (M2M broker) ) also
> > provides the ability to differentiate between the
> > old style connection and
> > the new style so that some new parameter types could
> > be added for data
> > transfer (e.g., a global list in addition to a
> > list). On NT, I believe the
> > connection as it is made spawns off a new listener,
> > so that it does not have
> > to do a callback as well.
> > ****************************
> >
> > Well, I thought maybe this addressed it. The
> > trouble is, I did not entirely
> > understand Joel's answer to my question and I do not
> > understand exactly what
> > this patch does either.
> >
> > If we could securely connect using port forwarding
> > to a server and have lots
> > of people work on configuring VistA and then
> > checking out the results with
> > CPRS and all, it might improve our ability to move
> > along Open Source
> > development efforts.
> >
> > On Friday 11 February 2005 09:52 pm, Kevin
> >
> > Toppenberg wrote:
> > > Nancy,
> > >
> > > I'm too lazy to read the documentation right now.
> >
> > But
> >
> > > I will tell you that I'm pretty sure that the
> >
> > client
> >
> > > specifies which port the server is to call back
> >
> > on.
> >
> > > So I don't know that a server patch would fix
> >
> > that.
> >
> > > What is your motivation in this issue? What
> >
> > problem
> >
> > > are you working on?
> > >
> > > Kevin
> > >
> > > --- Nancy Anthracite <[EMAIL PROTECTED]>
> >
> > wrote:
> > > > Is this patch the patch to allow connections on
> >
> > a
> >
> > > > limited number of ports? I
> > > > can't quite follow all of it, so I would like a
> >
> > guru
> >
> > > > to explain it in a way I
> > > > can follow, please - i.e., dumb it down big
> >
> > time,
> >
> > > > please. The documentation
> > > > is in the RPC Broker section of the VDL.
> > > > --
> > > > Nancy Anthracite
>
> -------------------------------------------------------
>
> > > > SF email is sponsored by - The IT Product Guide
> > > > Read honest & candid reviews on hundreds of IT
> > > > Products from real users.
> > > > Discover which products truly live up to the
> >
> > hype.
> >
> > > > Start reading now.
>
> http://ads.osdn.com/?ad_id=6595&alloc_id=14396&op=click
>
> > > > _______________________________________________
> > > > Hardhats-members mailing list
> > > > Hardhats-members@lists.sourceforge.net
>
> https://lists.sourceforge.net/lists/listinfo/hardhats-members
>
> > > __________________________________________________
> > > Do You Yahoo!?
> > > Tired of spam? Yahoo! Mail has the best spam
> >
> > protection around
> >
> > > http://mail.yahoo.com
>
> -------------------------------------------------------
>
> > > SF email is sponsored by - The IT Product Guide
> > > Read honest & candid reviews on hundreds of IT
> >
> > Products from real users.
> >
> > > Discover which products truly live up to the hype.
> >
> > Start reading now.
>
> http://ads.osdn.com/?ad_id=6595&alloc_id=14396&op=click
>
> > > _______________________________________________
> > > Hardhats-members mailing list
> > > Hardhats-members@lists.sourceforge.net
>
> https://lists.sourceforge.net/lists/listinfo/hardhats-members
>
> > --
> > Nancy Anthracite
>
> -------------------------------------------------------
>
> > SF email is sponsored by - The IT Product Guide
> > Read honest & candid reviews on hundreds of IT
> > Products from real users.
> > Discover which products truly live up to the hype.
> > Start reading now.
>
> http://ads.osdn.com/?ad_id=6595&alloc_id=14396&op=click
>
> > _______________________________________________
> > Hardhats-members mailing list
> > Hardhats-members@lists.sourceforge.net
>
> https://lists.sourceforge.net/lists/listinfo/hardhats-members
>
>
>
>
>
> __________________________________
> Do you Yahoo!?
> The all-new My Yahoo! - Get yours free!
> http://my.yahoo.com
>
>
>
>
> -------------------------------------------------------
> SF email is sponsored by - The IT Product Guide
> Read honest & candid reviews on hundreds of IT Products from real users.
> Discover which products truly live up to the hype. Start reading now.
> http://ads.osdn.com/?ad_id=6595&alloc_id=14396&op=click
> _______________________________________________
> Hardhats-members mailing list
> Hardhats-members@lists.sourceforge.net
> https://lists.sourceforge.net/lists/listinfo/hardhats-members
--
Nancy Anthracite
-------------------------------------------------------
SF email is sponsored by - The IT Product Guide
Read honest & candid reviews on hundreds of IT Products from real users.
Discover which products truly live up to the hype. Start reading now.
http://ads.osdn.com/?ad_id=6595&alloc_id=14396&op=click
_______________________________________________
Hardhats-members mailing list
Hardhats-members@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/hardhats-members
