> Could someone please explain me what is the need for stunnel when we can > use ssh tunnel > > $ssh -L 5555:localhost:2222 [email protected] > > Here I tried to ssh to [email protected] and forwarded my localport 5555 > to the somemachine.com's 2222. I guess this is what even stunnel does. >
AFAIK, stunnel is used to add SSL functionality to any plain text protocol. For example, let us say, you run a web server on port 80. Now to make you website secure, you can either configure the webserver to run on ssl port 443 as well (or) run stunnel on 443 and configure it to forward to port 80 on localhost. About 3 yrs back, I had benchmarked stunnel vs SSH tunnel for securing data transmission. I remember concluding that stunnel was crap and suggested SSH tunnel. It didn't fly with the security team though for SSH connection can support multiple channels which is a potential security risk (indeed!). Anyways, in the end, we encrypted the data ourselves instead of using either of these. -- 0 _______________________________________________ ILUGC Mailing List: http://www.ae.iitm.ac.in/mailman/listinfo/ilugc
