-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Am Dienstag, 13. August 2002 00:47 schrieb Watz: > Regarding the communication encryption....that should be relatively > easy to do on the win32 build because I believe that at least there > (almost) all SAPDB communication seems to be done by a shared tcp > socket wrapper libary (sqltcp.dll)....it could easily be extended or > replaced by one thats capable of encrypting the tcp stream.
Win32 only way is not an option. > I'm not totally sure but the unix builds don't seem to have such a > library and they rather call socket functions directly. I don't quite > understand why the design is so different here, it wouldn't have to be > from my understanding. The sockets were invented in the unix world. The M$ windows people crippled the network abstraction layers and made it nessesary to code around the reall POSIX definitions to get things working as it should. There is a very easy to use ssl-library which can be used here: OpenSSL. Get it on http://www.openssl.org. This may easyly used for a GPLed Software. > I do like the idea of a configurable and extensible network abstraction > library though, it shouldn't be too hard to make the unix and nt RTE > code use the same network library, the berkeley sockets code is about > the same anyway. There are other features that could be integrated > (optionally selecting the ip interfaces to listen on for example, and > not by default on all of them). > Encrypting the stream with SSL would surely be better than using > strange password encryption routines to avoid the password being sent > in clear text... Yepp. ACK. Additional comment to the CVS thoughts. It is really nessessary to open a CVS repository right now. Minimum is to give CVS-readonly/anonymous access to stay easy on current level. If we create a new/modified code (ssl-connections, tcpwraper, online compression ...) we would be able to create a patch for the current source version. After earning the trust of quality and reliability a developer may get write access granted, not earlier. mfG Jojo - -- J�rgen Sauer - AutomatiX GmbH, +49-4209-4699, [EMAIL PROTECTED] ** ** Das Linux Systemhaus - Service - Support - Server - L�sungen ** http://www.automatix.de to Mail me: remove: -not-for-spawm- ** -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (GNU/Linux) Comment: For info see http://www.gnupg.org iEYEARECAAYFAj1bcf0ACgkQW7UKI9EqarF21QCgt8d9RnPdCfN2rLc5PqV7Dzh3 zIIAoOJUF0xsPdfpuLQtGUkZVNYW2bYP =jbPw -----END PGP SIGNATURE----- _______________________________________________ sapdb.general mailing list [EMAIL PROTECTED] http://listserv.sap.com/mailman/listinfo/sapdb.general
