Attention all List Members: We are in the process of migrating all Red Hat lists from the current list manager software/server running qmail/Smartlist to a new server running postfix and GNU Mailman (*). Within the next week you will receive more information about this migration including information on how to access your membership, including subscribe/unsubscribe information and instructions on how to set your preferences for your membership on the list. The preferences include setting/unsetting digest mode, temporarily disabling delivery, and the option of receiving your own posts. This migration will not only address performace issues that have arisen due to the number of lists/members on Red Hat lists, but also highly improve ease of use for list members. Your patience is greatly appreciated. Thank you for your attention Kambiz Aghaiepour (*) For information on Mailman, see http://www.list.org/ -- \o__O o Kambiz Aghaiepour, RHCE - Phone: (919) 524-7423 o o \_ /|\ -= Red Hat, Inc. =- |\| Pager: (800) 946-4646 //\ //\ |\ |\ -=-=-=-=-=-=-=-=-=-=-=- | | Pager Pin #: 1412622 // // / / |/ mailto:kambiz@redhat.com | http://www.redhat.com |\ ||
Hey Guys, I run a secure site with the latest RH Secure Server and updates with RH 6.2 RH 7 has just been released. One of the first things I noticed missing from the Professional package was Secure Server. Red Hat recently acquired C2NET the makers of Stronghold. and Stronghold is available on the Red Hat site, at a whopping $995 Does this mean the end of RH Secure Server? Is it going to cost me a arm and 1 1/2 legs to upgrade this time and keep my secure site? Plus change my Server Certs? Inquiring minds want to know.... Brent Canipe
I sent a similar message to the list recently. I think it''s an evolution of SS. I''m supposing here; but I thought that RH got a dispensation to bundle 128-bit encryption with the base OS. And now the RSA patent is in the public domain. So I think all the RH 7 levels have OpenSSL and that the server in the professional server would be Apache+mod_ssl. So I guess that means SS is technically dead, obsolesced by a free, open alternative. If not, you can legally install Apache+mod_ssl now (always could outside the US). I looked over Stronghold and although there was a lot of marketing talk... I wasn''t sure what improvements it makes over RH''s Secure Server. -Alan At 08:33 AM 9/27/00 , you wrote:>Hey Guys, > I run a secure site with the latest RH Secure Server and updates with RH 6.2 >RH 7 has just been released. One of the first things I noticed missing >from the Professional package was Secure Server. >Red Hat recently acquired C2NET the makers of Stronghold. and Stronghold >is available on the Red Hat site, at a whopping $995 > >Does this mean the end of RH Secure Server? >Is it going to cost me a arm and 1 1/2 legs to upgrade this time and keep >my secure site? >Plus change my Server Certs?
> Hey Guys, > I run a secure site with the latest RH Secure Server and updates with RH6.2> RH 7 has just been released. One of the first things I noticed missingfrom the Professional package was Secure Server.> Red Hat recently acquired C2NET the makers of Stronghold. and Strongholdis available on the Red Hat site, at a whopping $995> > Does this mean the end of RH Secure Server? > Is it going to cost me a arm and 1 1/2 legs to upgrade this time and keepmy secure site?> Plus change my Server Certs?Nope. Why you ask? RSA patent expired in the US last week =) Red Hat 7.0 ships with OpenSSL and OpenSSH, you can simply grab Apache with mod_ssl or whatever and presto, off you go. This is basically what redhat-secure-server was, apache+openssl using licensed RSA components. http://www.cryptoarchive.net/ has mirrors of it all. Stronghold has some definite advantages over Apache, I can''t rmeber exactly what they are offhand (although the setup/config was easier, and I think it had some management tools), if I was gonna pay that kind of money I''d also consider zeus (www.zeus.com), and roxen (which is free).> Inquiring minds want to know.... > > Brent CanipeKurt Seifried SecurityPortal, your focal point for security on the net http://www.securityportal.com/