Implement a full SSL/TLS library
Implement a full SSL/TLS library
Again I came to a point where I can not use PB, since there is no native possibility to use SSL/TLS.
The current problem: I use websockets to communicate with a web page.
In windows with FireFox it is still working (don't know how long) but on macOS with safari ... no way
If the web page uses https all elemnts inside needs to be secured, also websockets so I need wss:// instead of ws://
I also asked chilkat, but they only do the client side.
So I need to go the hard way: at the moment I'm writing a wrapper for mbedTLS
It uses the apache license, so it is also free for commercial applications.
And it is available fo all PB platforms and it is written in plain C. (C99)
So I needed some tweaks to compile it in VS2010 (no C99 supported) for a static lib which I can use in PB.
Such a lib could also be used for direct secured posgres access and ,,,
Such a SSL/TLS lib for PB is needed. (sooner or later, no longer way for networking without the S)
The current problem: I use websockets to communicate with a web page.
In windows with FireFox it is still working (don't know how long) but on macOS with safari ... no way
If the web page uses https all elemnts inside needs to be secured, also websockets so I need wss:// instead of ws://
I also asked chilkat, but they only do the client side.
So I need to go the hard way: at the moment I'm writing a wrapper for mbedTLS
It uses the apache license, so it is also free for commercial applications.
And it is available fo all PB platforms and it is written in plain C. (C99)
So I needed some tweaks to compile it in VS2010 (no C99 supported) for a static lib which I can use in PB.
Such a lib could also be used for direct secured posgres access and ,,,
Such a SSL/TLS lib for PB is needed. (sooner or later, no longer way for networking without the S)
Re: Implement a full SSL/TLS library
I 100% agree, the whole network lib is more or less useless these days.
{Home}.:|:.{Dialog Design0R}.:|:.{Codes}.:|:.{Downloads}.:|:.{History Viewer Online}
Re: Implement a full SSL/TLS library
+1
And I would like to add: for a fully working SSL/TLS library for using in a PB client and as PB server I would also pay extra
And I would like to add: for a fully working SSL/TLS library for using in a PB client and as PB server I would also pay extra
Re: Implement a full SSL/TLS library
Maybe a fundraiser to sponsor Fred to do the development work and add it to PB?
Maybe he's too busy?
Maybe he's too busy?
Re: Implement a full SSL/TLS library
Did you have a look at Fossil's approach with OpenSSL?
I agree https is absolutely necessary if not behind a firewall.
With raspberryPI devices as remote servers, this would round out PB v6 quite nicely!
The nice thing about standards is there are so many to choose from. ~ Andrew Tanenbaum
- NicTheQuick
- Addict
- Posts: 1227
- Joined: Sun Jun 22, 2003 7:43 pm
- Location: Germany, Saarbrücken
- Contact:
Re: Implement a full SSL/TLS library
Please don't add SSL/TLS as a static library but use the libraries already installed on the system. Software based on these libraries should keep secure even if it gets no updates for itself.
The english grammar is freeware, you can use it freely - But it's not Open Source, i.e. you can not change it or publish it in altered way.
Re: Implement a full SSL/TLS library
Yes, if you mean Linux or macOS. No if you mean windows.NicTheQuick wrote: ↑Mon Feb 07, 2022 3:36 pm Please don't add SSL/TLS as a static library but use the libraries already installed on the system. Software based on these libraries should keep secure even if it gets no updates for itself.
That's one of the advantages of OpenSource: you can fix it by yourself. (If needed)
How long needs MS to fix something? OpenSSL, for example, gets a lot of more security updates then the windows SSL stuff.
I know this, because we use OPNsense and I see how often they use a new version of OpenSSL. And the reason is not that it is not a good piece
of software. All other major OSs uses OpenSSL as default security stack.
And how good is the MS documentation to implement a secured server with sockets?
And what do I do after 2025 when Win10 gets no updates anymore?
Maybe the 'good programmers' write then software which don't need PCs of the next generation to work at a normal speed.
Especially if security is affected, I trust more an OpenSource solution.
Re: Implement a full SSL/TLS library
+1
I would pay for an SSL compatible Network Library.
I would pay for an SSL compatible Network Library.
Re: Implement a full SSL/TLS library
+1
Also willing to help fund, as always
Also willing to help fund, as always
As you walk on by, Will you call my name? Or will you walk away?
- skinkairewalker
- Enthusiast
- Posts: 635
- Joined: Fri Dec 04, 2015 9:26 pm
-
- Addict
- Posts: 1233
- Joined: Wed Feb 28, 2007 9:13 am
- Location: London
Re: Implement a full SSL/TLS library
+1
JACK WEBB: "Coding in C is like sculpting a statue using only sandpaper. You can do it, but the result wouldn't be any better. So why bother? Just use the right tools and get the job done."