Forum: Ruby Shared Half-Secret

Announcement (2017-05-07): www.ruby-forum.com is now read-only since I unfortunately do not have the time to support and maintain the forum any more. Please see rubyonrails.org/community and ruby-lang.org/en/community for other Rails- und Ruby-related community platforms.
4299e35bacef054df40583da2d51edea?d=identicon&s=25 James Gray (bbazzarrakk)
on 2009-04-17 19:49
(Received via mailing list)
I have a program A (totally private) that talks to a program B (open
source).  I would like to introduce some way to ensure B only listens
to the real A to avoid things like man-in-the-middle attacks.

Any good ideas about how I might accomplish this?  Thanks.

James Edward Gray II
Be30361bb0b0c495e3077db43ad84b56?d=identicon&s=25 Aaron Patterson (Guest)
on 2009-04-17 19:57
(Received via mailing list)
On Sat, Apr 18, 2009 at 02:48:32AM +0900, James Gray wrote:
> I have a program A (totally private) that talks to a program B (open
> source).  I would like to introduce some way to ensure B only listens to
> the real A to avoid things like man-in-the-middle attacks.

SSL socket with certificate validation perhaps?
4299e35bacef054df40583da2d51edea?d=identicon&s=25 James Gray (bbazzarrakk)
on 2009-04-17 20:02
(Received via mailing list)
On Apr 17, 2009, at 12:55 PM, Aaron Patterson wrote:

> On Sat, Apr 18, 2009 at 02:48:32AM +0900, James Gray wrote:
>> I have a program A (totally private) that talks to a program B (open
>> source).  I would like to introduce some way to ensure B only
>> listens to
>> the real A to avoid things like man-in-the-middle attacks.
>
> SSL socket with certificate validation perhaps?

Yeah, it does look like that's all I really need.  Great, I like
simple.  Thanks for the idea.

James Edward Gray II
This topic is locked and can not be replied to.