[Top][All Lists]

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Gnumed-devel] Hosting an encrypted pythonic simplehttp GNUmed serve

From: Karsten Hilbert
Subject: Re: [Gnumed-devel] Hosting an encrypted pythonic simplehttp GNUmed server
Date: Sun, 1 Aug 2010 20:25:43 +0200
User-agent: Mutt/1.5.20 (2009-06-14)

On Sun, Aug 01, 2010 at 10:38:21AM -0700, Jim Busser wrote:

> > SSL
> > 
> >
> I assume it's not in place for the public database or, at least, I recall no 
> interaction accepting or acknowledging a certificate.

This is about encryption, not about authentication.

> My experience connecting with SSL is mainly via browser
> so... if a GNUmed client were to try to make a connection to
> Postgres configured to only accept SSL connections, does the
> GNUmed client need to be updated somewhere in its
> configuration (login window checkbox?) to invoke SSL?


> Any thoughts on authenticating users (more than just userid and password)?

There's three methods:

1) knowledge (using a secret)
2) possession (time-based token generator, smart card, etc)
3) identity (biometrics)

Each is possible.

GPG key ID E4071346 @
E167 67FD A291 2BEA 73BD  4537 78B9 A9F9 E407 1346

reply via email to

[Prev in Thread] Current Thread [Next in Thread]