On Wed, 2012-11-14 at 16:14 +0100, Jakub Scholz wrote: > Actually, I do not care so much about the internal port which currently > allows regular connections only - should it allowed both, it will be not an > issue. The important part is to allow only SSL on the external network. The > reason is that a) we do not want external customers to connect unencrypted > and b) on SSL we can easily disable the username/password access and allow > only certificate based authentication. > > So if we get instead of the three options (ssl-only, regular-only and both) > only two options - both and ssl-only - it would be fine for us. It would > then work as a kind of "minimal security level".
Yep, that answers the question. Thanks I wonder if there is any good reason to only want a non encrypted connection. Andrew --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
