[VPN] SSL "VPNs"
Bennett Todd
bet at rahul.net
Thu Feb 6 12:30:16 EST 2003
I know of two categories of SSL-transported remote access solution,
and one of 'em is sometimes (annoyingly, to my tastes) called a
"VPN".
That would be socks transported over SSL. Aventail does that. Throw
a socks shim on the local machine, direct it at the local endpoint
of a certificate-authenticated stunnel, and voila, you've got a
cheap-n-sleazy VPN. More or less works Ok for some apps, if you like
socks.
The other SSL-based remote access solution I've seen is actually
in my favourite category: thin client. A web browser is trivially
an adequate thin client for SSL-based web apps; and there are some
approaches (e.g. the Java SSH client, Citrix @Access) that allow
downloading a special-purpose client through a web browser for more
generic thin client designs.
With a bit of care in how things are deployed, you can produce a
remote access solution that can allow the use of most apps users end
up wanting, from the proverbial internet kiosk or cybercafe.
Only tangentially related to VPNs, though, except in the minds of
marketers.
-Bennett
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: not available
Url : http://lists.shmoo.com/pipermail/vpn/attachments/20030206/9aa97f79/attachment.pgp
More information about the VPN
mailing list