World: r3wp
[!REBOL3 Schemes] Implementors guide
older newer | first last |
eFishAnt 12-Jan-2010 [1322] | R2 2.7.7 has mention in notes about TLS SSL. My question is what is the test case these were tried on? I just want to verify they work in R2. |
Graham 12-Jan-2010 [1323] | This is R3 group. |
eFishAnt 12-Jan-2010 [1324] | I know, but a good point for heading in R3...use a common test case between the 2. |
BrianH 12-Jan-2010 [1325] | It's unlikely that tests would be portable - the port model is completely different in R3. |
eFishAnt 12-Jan-2010 [1326] | Understand all that. Just what was done in 2.7.7 to test it? I have tried without success. |
Graham 12-Jan-2010 [1327x5] | http://www.gnu.org/software/gnutls/ Lesser GPL ... can this work? |
Are there any issues with the lesser GPL and the open host kit? | |
Or, would this be core RT stuff ...? | |
GNU TLS supports Certificate types: X.509, OPENPGP Protocols: TLS1.2, TLS1.1, TLS1.0, SSL3.0 Ciphers: AES-256-CBC, AES-128-CBC, 3DES-CBC, CAMELLIA-128, CAMELLIA-256, ARCFOUR, ARCFOUR-40 MACs: SHA512, SHA384, SHA256, SHA1, RMD160, MD5 Key exchange algorithms: RSA, RSA-EXPORT, DHE-DSS, DHE-RSA, DHE-PSK, PSK, SRP, SRP-RSA, SRP-DSS, ANON-DH Compression methods: DEFLATE, LZO, NULL Extensions: Max record size, Cert Type (OpenPGP), Server Name, SRP, TLS/IA, Opaque PRF Input | |
SHA256 ...need this for Amazon signing ... | |
BrianH 12-Jan-2010 [1332x2] | No GPL stuff can be included in the host kit. |
Not even LGPL. | |
Graham 12-Jan-2010 [1334] | not even if you compile it in yourself?? |
BrianH 12-Jan-2010 [1335x2] | Only if you write it yourself and relicense it. No point to including it otherwise. In theory you could dynamicly link LGPL or Classpath code to the host, but you can't staticly link or otherwise incorporate it and distribute it. If you can't distribute it, there's no point in using the code. |
Stick with BSD or similar licenses, like OpenSSL or the Putty SSL stack. | |
Maxim 12-Jan-2010 [1337] | putty is the best place to start work on adding SSL to R3. its all there, in MIT it is 100% stand alone and the code is compact and clean. |
BrianH 12-Jan-2010 [1338x2] | The only tricks are to see if it has proper TLS support and whether it is suceptible to the recently discovered SSL/TLS protocol vulns. |
Putty hasn't been updated in a while and never reached 1.0. Still, I agree that it is the best bet. | |
Graham 12-Jan-2010 [1340] | I wonder why Carl can't reuse the r2 code ... |
BrianH 12-Jan-2010 [1341x2] | Because noone understands it, it doesn't do what we need it to, and the port model is different. |
And it hasn't been updated in longer than Putty. | |
Graham 12-Jan-2010 [1343] | Hmm... sounds a serious lapse to let code no one understands be placed into r/command ... |
BrianH 12-Jan-2010 [1344] | It works as well as it always has, and it went in when the developer (Holger) was still working for RT. |
Maxim 12-Jan-2010 [1345x2] | I looked at the putty code about a year ago... and If it had compiled under DevC I would have played around with it... now that I've got MSVC, I should be able to build the sources... maybe we could just repackage the executable loader as a DLL. it should be too much work. |
shouldn't | |
Graham 12-Jan-2010 [1347] | I thought you were doing other stuff? |
Maxim 12-Jan-2010 [1348x2] | yes I am... but just thinking out loud... if someone really needs it how one could approach the project. |
the putty code was very nice, and well documented on top of it. | |
Graham 12-Jan-2010 [1350x2] | What are you working on now? |
I think having SSL is essential .. | |
Maxim 12-Jan-2010 [1352] | the C language parser, although I haven't done a lot in more than a week. with university starting up and wanting to use up my last days of vacation. |
Graham 12-Jan-2010 [1353] | university??? |
Maxim 12-Jan-2010 [1354x3] | yep. Visual Arts, part time (although this semester I am doing a full time semester, since the courses I took are easy for me). |
funny in one of my courses I have to build a web page... hehehe a web 1.0 type web page... the kind that I can write using notepad in an hour hehe | |
I might even offer a bit of tutoring for those who don't understand it. with all the web's ubiquity, most people (non programmers) still don't really know what they are doing when it comes to building sites. | |
Graham 12-Jan-2010 [1357] | Just use FrontPage |
BrianH 12-Jan-2010 [1358] | No swearing. |
Graham 12-Jan-2010 [1359x3] | LOL |
I note rebol.com has frontpage extensions enabled .. | |
Carl should use it to save time | |
BrianH 12-Jan-2010 [1362] | I doubt that would save him time - all of rebol.com is generated from scripts, mostly WIP in the new site. |
Graham 13-Jan-2010 [1363x2] | Brian .. I wuz kidding .... |
but he needs a web master ... doing all of this by himself is not very efficient | |
BrianH 13-Jan-2010 [1365] | Whew, I was worried about you for a second - was about to call the psychiatrist... |
Graham 13-Jan-2010 [1366] | And he asked for volunteers, got some and then ignored them ... so if you're still calling the psychiatrist ... you know where to send him. |
BrianH 13-Jan-2010 [1367] | Right now the project is just migrating the data to the new format. That's a programming problem. |
Graham 13-Jan-2010 [1368] | now my ftp scheme is doing what I need .. I can move onto my fax:// scheme which uses the ftp protocol but on port 4559 |
Maxim 13-Jan-2010 [1369] | btw, thank you Graham for spearheading this scheme initiative :-) |
Graham 13-Jan-2010 [1370x2] | DELE, MKD etc are all done now. |
Someone had to step forward ... | |
older newer | first last |