October 2004

SSH will do the job for secure 3000 connectivity

As an example of what the 3000 community can do for its own connectivity, look at the SSH suite, which encrypts traffic including passwords, to effectively eliminate eavesdropping, connection hijacking, and other network-level attacks. Ken Hirsch reports that he has “parts of the SSH suite working, but not SSH as an interactive command interface. I use SFTP (FTP over SSH) to send files to clients. SSH works as a pass-through for SFTP (and presumably for SCP, but I haven’t tried it. The one time I tried to send a really large file, SFTP crapped out at around 9MB). I haven’t had any problems on smaller files, though.”

The software, available at invent3k.external.hp.com/~KEN.HIRSCH/opensshnotes.html, still doesn’t work as an interactive command process “because it tries to use non-blocking IO and select() on the terminal, which doesn’t work on MPE.” Hirsch added that a developer/manager of an HP 3000 “could write a front end to do the terminal IO and pass through to SSH as commands. The SFTP program just does regular reads on the terminal, so it works fine. SSH might work as a batch process, though, if you just want to send commands unconditionally.”


Copyright The 3000 NewsWire. All rights reserved