[Top][All Lists]

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Gnumed-devel] Hosting an encrypted pythonic simplehttp GNUmed serve

From: Karsten Hilbert
Subject: Re: [Gnumed-devel] Hosting an encrypted pythonic simplehttp GNUmed server
Date: Sun, 1 Aug 2010 19:15:46 +0200
User-agent: Mutt/1.5.20 (2009-06-14)

On Sun, Aug 01, 2010 at 12:18:54AM -0700, Jim Busser wrote:

> Also BTW begs a question about the wxPython GNUmed client connecting across 
> the internet...
>       --> what provides its encryption, or --- if it is unencrypted --- what 
> would be the recommendation?

The recommendation is:

a) only allow from any untrusted client SSL connections to
   the PostgreSQL database (this is done inside pg_hba.conf on
   the server)

b) on top of that desire to tunnel the above traffic over ssh

> on the wiki, there is
> ... but would kerberos be usual and standard for this scenario?

That is only for authentication, I believe. It doesn't add
on-the-wire encryption AFAIK.

GPG key ID E4071346 @
E167 67FD A291 2BEA 73BD  4537 78B9 A9F9 E407 1346

reply via email to

[Prev in Thread] Current Thread [Next in Thread]