Re: Cyrus backup: is traffic from master to backup server encrypted?

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



Odd, works here.


telnet localhost 2005
Trying ::1...
Connected to localhost.
Escape character is '^]'.
* SASL PLAIN
* STARTTLS
* COMPRESS DEFLATE
* OK domain Cyrus sync server v2.4.20
STARTTLS
OK Begin TLS negotiation now




On 11/8/19 2:12 AM, Deborah Pickett wrote:
... or do I need to establish my own SSH tunnel from master to backup server?

I've set up my dedicated Cyrus backup server with tls_server_cert and tls_server_key, and when I connect to port 2005 I see that STARTTLS is offered:

# nc localhost 2005
* SASL PLAIN LOGIN DIGEST-MD5
* STARTTLS
* COMPRESS DEFLATE
* OK rsync Cyrus backup server 3.0.11-Debian-3.0.11-1~bpo10+1
STARTTLS
NO command not implemented

But as shown, the STARTTLS command from the client is rejected.

I believe that DIGEST-MD5 gives me some level of privacy (sync_test reports a security strength factor of 128) even without TLS?

--
*Deborah Pickett*
System Administrator
*Polyfoam Australia Pty Ltd*

----
Cyrus Home Page: http://www.cyrusimap.org/
List Archives/Info: http://lists.andrew.cmu.edu/pipermail/info-cyrus/
To Unsubscribe:
https://lists.andrew.cmu.edu/mailman/listinfo/info-cyrus


begin:vcard
fn:Patrick Boutilier
n:Boutilier;Patrick
org:;Nova Scotia Department of Education
adr:;;2021 Brunswick Street;Halifax;NS;B3K 2Y5;Canada
email;internet:boutilpj@xxxxxxxxxxx
title:WAN Communications Specialist
tel;work:902-424-6800
tel;fax:902-424-0874
version:2.1
end:vcard

----
Cyrus Home Page: http://www.cyrusimap.org/
List Archives/Info: http://lists.andrew.cmu.edu/pipermail/info-cyrus/
To Unsubscribe:
https://lists.andrew.cmu.edu/mailman/listinfo/info-cyrus

[Index of Archives]     [Cyrus SASL]     [Squirrel Mail]     [Asterisk PBX]     [Video For Linux]     [Photo]     [Yosemite News]     [gtk]     [KDE]     [Gimp on Windows]     [Steve's Art]

  Powered by Linux