Bacula-users
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: [Bacula-users] TLS connection verification

2013-02-05 13:00:43
Subject: Re: [Bacula-users] TLS connection verification
From: Dan Langille <dan AT langille DOT org>
To: Nasos Nikologiannis <nasosnik AT gmail DOT com>
Date: Tue, 05 Feb 2013 12:58:08 -0500 
On 2013-02-05 03:57, Nasos Nikologiannis wrote:
> I have successfully implemented TLS communication between
> director-storage-clients.
> Is there a way to verify that indeed all the traffic is encrypted?

I'd guess a monitoring tool such as tcpcump

> I tried "openssl s_client -connect director:port" and it claims that
> the connection is not encrypted.

I believe that initial contact is never encrypted. Negotiation occurs, 
then encrypted communication commences.

> Also I cannot capture any encrypted communication with tcpdump.

This seems to be ambiguous.  Are you saying you are unable to capture, 
and would like help?

> Any suggestions?

If TLS is required in the resource declarations, TLS will be used.


-- 
Dan Langille - http://langille.org/

------------------------------------------------------------------------------
Free Next-Gen Firewall Hardware Offer
Buy your Sophos next-gen firewall before the end March 2013 
and get the hardware for free! Learn more.
http://p.sf.net/sfu/sophos-d2d-feb
_______________________________________________
Bacula-users mailing list
Bacula-users AT lists.sourceforge DOT net
https://lists.sourceforge.net/lists/listinfo/bacula-users
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  [Bacula-users] Virtual Full's - Waiting for Storage, Jean-Louis Dupond
Next by Date:  Re: [Bacula-users] Bacula deficiency, Dan Langille
Previous by Thread:  [Bacula-users] TLS connection verification, Nasos Nikologiannis
Next by Thread:  [Bacula-users] spurious "Intervention needed" messages, Tilman Schmidt
Indexes:  [Date] [Thread] [Top] [All Lists]