-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Am Dienstag, 13. August 2002 00:47 schrieb Watz:
> Regarding the communication encryption....that should be relatively
> easy to do on the win32 build because I believe that at least there
> (almost) all SAPDB communication seems to be done by a shared tcp
> socket wrapper libary (sqltcp.dll)....it could easily be extended or
> replaced by one thats capable of encrypting the tcp stream.

Win32 only way is not an option.

> I'm not totally sure but the unix builds don't seem to have such a
> library and they rather call socket functions directly. I don't quite
> understand why the design is so different here, it wouldn't have to be
> from my understanding.
The sockets were invented in the unix world. The M$ windows people 
crippled the network abstraction layers and made it nessesary to code 
around the reall POSIX definitions to get things working as it should.

There is a very easy to use ssl-library which can be used here: OpenSSL. 
Get it on http://www.openssl.org. This may easyly used for a GPLed 
Software.

> I do like the idea of a configurable and extensible network abstraction
> library though, it shouldn't be too hard to make the unix and nt RTE
> code use the same network library, the berkeley sockets code is about
> the same anyway. There are other features that could be integrated
> (optionally selecting the ip interfaces to listen on for example, and
> not by default on all of them).

> Encrypting the stream with SSL would surely be better than using
> strange password encryption routines to avoid the password being sent
> in clear text...
Yepp. ACK.

Additional comment to the CVS thoughts.

It is really nessessary to open a CVS repository right now.
Minimum is to give CVS-readonly/anonymous access to stay easy on current 
level.
If we create a new/modified code (ssl-connections,  tcpwraper, online 
compression ...) we would be able to create a patch for the current 
source version.

After earning the trust of quality and reliability a developer may get 
write access granted, not earlier.

mfG     
        Jojo
- -- 
J�rgen Sauer - AutomatiX GmbH, +49-4209-4699, [EMAIL PROTECTED] **
** Das Linux Systemhaus - Service - Support - Server - L�sungen **
http://www.automatix.de to Mail me: remove: -not-for-spawm-     **
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.6 (GNU/Linux)
Comment: For info see http://www.gnupg.org

iEYEARECAAYFAj1bcf0ACgkQW7UKI9EqarF21QCgt8d9RnPdCfN2rLc5PqV7Dzh3
zIIAoOJUF0xsPdfpuLQtGUkZVNYW2bYP
=jbPw
-----END PGP SIGNATURE-----


_______________________________________________
sapdb.general mailing list
[EMAIL PROTECTED]
http://listserv.sap.com/mailman/listinfo/sapdb.general

Reply via email to