[Mono-dev] RFC on remoting security stuff
Robert Jordan
robertj at gmx.net
Mon Oct 15 14:12:52 EDT 2007
Hi,
Jay Miller wrote:
> Hi there - I wanted to resurrect this thread briefly because this
> issue is coming up for our development team and I was hoping someone
> could provide some additional guidance. Specifically, could someone
> elaborate on the follow comment:
>
> On 10/1/07, Robert Jordan <robertj at gmx.net> wrote:
>> That said, I think we should implement secure remoting on top of
>> AuthenticatedStream (SslStream). This is the only way to make
>> secure remoting really useful on Mono's main platform Unix.
>
> Our dev team is willing to give this feature a shot, but I'd love more
> info regarding the impact of such a patch and any implementation hints
> you might have (as detailed as you like!).
The channels that need security are implemented in
mcs/class/System.Runtime.Remoting/System.Runtime.Remoting.Channels.Tcp/
and
mcs/class/System.Runtime.Remoting/System.Runtime.Remoting.Channels.Http/
Since TCP channel already employs a connection cache, plugging the
SSL channel should be pretty straightforward.
The HTTP channel would need more love because (1) it doesn't have
a connection cache and (2) it must remain compatible with ASP.NET's
HTTP channel hosting feature, that doesn't support the new remoting
security infrastructure.
Robert
More information about the Mono-devel-list
mailing list