[Mono-dev] RFC on remoting security stuff

Robert Jordan robertj at gmx.net
Mon Oct 15 14:12:52 EDT 2007


Jay Miller wrote:
> Hi there - I wanted to resurrect this thread briefly because this
> issue is coming up for our development team and I was hoping someone
> could provide some additional guidance.  Specifically, could someone
> elaborate on the follow comment:
> On 10/1/07, Robert Jordan <robertj at gmx.net> wrote:
>> That said, I think we should implement secure remoting on top of
>> AuthenticatedStream (SslStream). This is the only way to make
>> secure remoting really useful on Mono's main platform Unix.
> Our dev team is willing to give this feature a shot, but I'd love more
> info regarding the impact of such a patch and any implementation hints
> you might have (as detailed as you like!).

The channels that need security are implemented in




Since TCP channel already employs a connection cache, plugging the
SSL channel should be pretty straightforward.

The HTTP channel would need more love because (1) it doesn't have
a connection cache and (2) it must remain compatible with ASP.NET's
HTTP channel hosting feature, that doesn't support the new remoting
security infrastructure.


More information about the Mono-devel-list mailing list