Re: [Help-gnutls] gnutls with unix domain (local) sockets

help-gnutls

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Help-gnutls] gnutls with unix domain (local) sockets

From:	Florian Weimer
Subject:	Re: [Help-gnutls] gnutls with unix domain (local) sockets
Date:	Thu, 02 Oct 2008 10:35:09 +0200

* Lennart Koopmann:

> Am Montag, den 29.09.2008, 16:44 +0300 schrieb Arturo Martinez Rubio:
>> In my specific case, the applications which will communicate using TLS
>> are running in the same machine.
>
> Isn't TLS pretty useless if used for interprocess communication? Or does
> some kind of server that is running on the local machine require TLS?

Some applications use UNIX domain sockets in /tmp, where the identity
of the peer is less than clear.  It's been suggested to use TLS in
this scenario.

(Personally, I think using a separate directory, writable by the
appropriate user, is a better choice, perhaps combined with
credentials passing.)

-- 
Florian Weimer                <address@hidden>
BFK edv-consulting GmbH       http://www.bfk.de/
Kriegsstraße 100              tel: +49-721-96201-1
D-76133 Karlsruhe             fax: +49-721-96201-99

[Prev in Thread]

Current Thread

[Next in Thread]

Re: [Help-gnutls] gnutls with unix domain (local) sockets, Florian Weimer <=

Prev by Date: [Help-gnutls] Re: compiling without gnutls-extra
Next by Date: [Help-gnutls] compiling without gnutls-extra
Previous by thread: [Help-gnutls] Re: compiling without gnutls-extra
Next by thread: [Help-gnutls] compiling without gnutls-extra
Index(es):
- Date
- Thread