[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: How to Encrypt Cfengine Traffic Completely?
|
From: |
Mark Burgess |
|
Subject: |
Re: How to Encrypt Cfengine Traffic Completely? |
|
Date: |
Wed, 25 Oct 2006 15:32:04 +0200 |
|
User-agent: |
Thunderbird 1.5.0.7 (X11/20060911) |
Daniel,
can you say what version you are using? You might need to upgrade...
It is possible (not easy to check right now) that there are still some
potential improvements to be made. I think the last improvement that
was made was in 2.1.14
Mark Burgess
Professor of Network and System Administration
Oslo University College
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Work: +47 22453272 Email: Mark.Burgess@iu.hio.no
Fax : +47 22453205 WWW : http://www.iu.hio.no/~mark
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Daniel Qarras wrote:
> Hi!
>
> I would like to completely encrypt cfengine traffic between two hosts
> that are connected to the Internet. I used Ethereal to check that when
> in copy section encrypt=false, all files and their contents can be
> sniffed. This was expected, of course. However, when encrypt=true, the
> contents of the files is secured but I still was able to see some
> revealing information, like file names: cf.httpd, cf.sendmail, cf.ntpd,
> etc. I don't want anybody to have even a remote idea what files my
> servers are exchanging.
>
> So, can this kind of complete encryption be implemented with some
> exotic config option that I've missed or do I need to investigate other
> options, like ssh tunnels?
>
> Thanks!
>
> __________________________________________________
> Do You Yahoo!?
> Tired of spam? Yahoo! Mail has the best spam protection around
> http://mail.yahoo.com
>
>
> _______________________________________________
> Help-cfengine mailing list
> Help-cfengine@gnu.org
> http://lists.gnu.org/mailman/listinfo/help-cfengine