SSL (JANUS DEFINE parameter): Difference between revisions

From m204wiki
Jump to navigation Jump to search
m (1 revision)
m (1 revision)
Line 32: Line 32:


<ul>
<ul>
<li>For ports that authenticate incoming certificates: <var>[[JANUS ADDCA]]</var>, [[JANUS DELCA]], [[JANUS DISPLAYCA]], [[JANUS STATCA]].  
<li>For ports that authenticate incoming certificates: <var>[[JANUS ADDCA]]</var>, <var>[[JANUS DELCA]]</var>, [[JANUS DISPLAYCA]], [[JANUS STATCA]].  
<li>For monitoring a port's SSL activity: <var>[[JANUS SSLSTAT]]</var>
<li>For monitoring a port's SSL activity: <var>[[JANUS SSLSTAT]]</var>
</ul>
</ul>

Revision as of 22:50, 1 March 2012

<section begin="desc" />Sets encryption on<section end="desc" />

SSL is a parameter on JANUS DEFINE, which defines and sets characteristics of a Janus port.

The SSL parameter indicates that communications on this port should be encrypted using Janus Network Security SSL (Secure Sockets Layer) or TLS (Transport Layer Security) support. The parameter has the following mutually exclusive options:

SSL procfile procname Identifies the file (typically JANSSL) and procedure that contain the certificate to be presented to clients on server ports and to the server on CLSOCK ports.
SSL * Presents to the client or server the "self-signed certificate" provided for your site by Sirius Software.
SSL 0 Indicates for CLSOCK ports that, although the connection is encrypted, the client is not to provide a certificate to the server if requested. Server certificates are required to establish an encrypted connection, but client certificates are optional and are not used at all by many secured servers.

Certificates and authentication are described further in the Janus Network Security Reference Manual.

Other optional DEFINE command parameters used in conjunction with the SSL parameter include:

Other JANUS commands useful for SSL ports include:

Janus Web Server $functions useful for SSL applications include: $Web_Cert_Info, $Web_Cert_Levels, $Web_Cipher, $Web_Protocol, $Web_Secure.

The SSL parameter is valid for SRVSOCK, CLSOCK (but not DEBUGGERCLIENT), WEBSERV, or TNSERV port types. As of Sirius Mods 8.0, SSL is also available for FTPSERVER ports. Currently, only explicit invocation of SSL is suported for FTPSERVER ports, as described at the Wikipedia FTPS entry.

See also