![]() But its pretty much the same on Debian/Ubuntu… just replace ‘yum’ with ‘apt-get’. The rest of this post is based around a CentOS installation. But if it uses TCP and you want to provide an extra layer of protection stunnel can do it.Īs an added bonus stunnel is extremely easy to setup. Ok so in this case security isn’t that vital and none of the data is particularly sensitive. doesn’t work to well if your on a dynamic IP and still leaves unencrypted data flying about the ether. Munin checks the servers status by ‘telnet’ to the munin-node running on the target server/pc, so if you are monitoring a remote server you have data about your system flying about everywhere! Also it means that there is a naked telnet port open on your server, which although you can lock it down by only allowing connections from a specific IP etc. In my example I wanted to provide a little security to my simple ‘Munin’ monitoring solution (I’ll write something about that at a later date). … it can be used as a simple ‘bouncer’ for pretty much anything! … you could use it to fool certain websites into thinking you are in a different location. … protects your exploitable services by hiding them behind stunnel. … secures data previously transmitted in plain text. … provides an extra layer of security to an internet based application. Stunnel is available for both Linux and Windows, and simply put creates an SSL tunnel from one machine or server to another. Not to worry, there is a solution for you and its called stunnel. So you’re a fully signed up ‘tin foil hatter’ and you have an old app that communicates over the internet but doesn’t use SSL?
0 Comments
Leave a Reply. |