View Single Post
Old 08-04-2005, 03:49 PM  
darkone's Avatar
Join Date: Dec 2001
Posts: 2,230

io 1.0 will support secure site to site transfers. Because of known (?) security issue in current implementation, I never bothered to implement it. Also notice that PASSIVE mode SSL transfers are also vulnerable. Always prefer to use ACTIVE mode when possible. This applies to all daemons, and all implementations. Certificate based authentication on both control channel and data channel is a MUST for secure passive mode transfers.
darkone is offline   Reply With Quote