1. Forum
  2. Newsgroups
  3. comp.misc

  • big thanks to

    From Wolfgang Agnes@wagnes@jemoni.to to comp.unix.programmer,comp.misc,comp.unix.bsd.freebsd.misc on Fri Nov 8 11:18:52 2024
    From Newsgroup: comp.misc

    I wanted to send a

    BIG THANKS

    to

    Jan Mojžíš

    for having written

    https://github.com/janmojzis/tlswrapper

    which is a TLS wrapper written in the UNIX way. I've been looking for a program like that for a little while to be able to continue to use
    Daniel J. Bernstein's tcpserver (wrapped in TLS).

    And another thank-you for the fact that tlswrapper can read a single
    file including the full chain of certificates and the private key of the server.

    (*) FreeBSD

    I could not find a precompiled package of tlswrapper in FreeBSD's pkg collection. Perhaps I should make that contribution.

    (*) The ucspi-ssl package

    There's sslserver from the ucspi-ssl package at

    https://www.fehcom.de/ipnet/ucspi-ssl.html

    but it hasn't been easy to compile it.

    (*) inetd and xinetd

    I did look at the current state of affairs of inetd and xinetd and it
    looks like they ignore TLS completely. Perhaps they shouldn't?
    --- Synchronet 3.20a-Linux NewsLink 1.114
  • From Lawrence D'Oliveiro@ldo@nz.invalid to comp.unix.programmer,comp.misc,comp.unix.bsd.freebsd.misc on Fri Nov 8 21:16:42 2024
    From Newsgroup: comp.misc

    On Fri, 08 Nov 2024 11:18:52 -0300, Wolfgang Agnes wrote:

    (*) inetd and xinetd

    I did look at the current state of affairs of inetd and xinetd and it
    looks like they ignore TLS completely. Perhaps they shouldn't?

    If you look at the tlswrapper docs, you’ll see that it can be invoked via inetd (or systemd), and it in turn wraps the actual service process.
    --- Synchronet 3.20a-Linux NewsLink 1.114
  • From Wolfgang Agnes@wagnes@jemoni.to to comp.unix.programmer,comp.misc,comp.unix.bsd.freebsd.misc on Fri Nov 8 20:45:51 2024
    From Newsgroup: comp.misc

    Lawrence D'Oliveiro <ldo@nz.invalid> writes:

    On Fri, 08 Nov 2024 11:18:52 -0300, Wolfgang Agnes wrote:

    (*) inetd and xinetd

    I did look at the current state of affairs of inetd and xinetd and it
    looks like they ignore TLS completely. Perhaps they shouldn't?

    If you look at the tlswrapper docs, you’ll see that it can be invoked via inetd (or systemd), and it in turn wraps the actual service process.

    That makes sense.
    --- Synchronet 3.20a-Linux NewsLink 1.114