which way is more secured?

which way is more secured?
Secure Home | Search | About
Login Password
Register Now! Lost Password?
 Microsoft Applications Security    Post an article   get this group's latest topics as an RSS feed add this group's latest topics to your My MSN content add this group's latest topics to your My Yahoo content add this group's latest topics to your Google content
Subject Author Date
which way is more secured? John 11-01-2007
Posted by =?Utf-8?B?Sm9obg==?= on November 1, 2007, 2:08 pm
If you were  Registered and logged in, you could reply and use other advanced thread options
Hi all,

We have extranet set up to allow clients to retrieve
their files from my company. We try to decide whether
we should use DMZ (put the web server in DMZ and buy the
certificate to allow SSL connection or VPN over SSL to
allow the external clients to connect? Which one you recommend?

Thank you!

Posted by on November 1, 2007, 2:18 pm
If you were  Registered and logged in, you could reply and use other advanced thread options
VPN over SSL is more secure than HTTP over SSL. It is more management,
too, of course. Definitely put the device in a screened subnet (DMZ).

J Wolfgang Goerlich

> Hi all,
>
> We have extranet set up to allow clients to retrieve
> their files from my company. We try to decide whether
> we should use DMZ (put the web server in DMZ and buy the
> certificate to allow SSL connection or VPN over SSL to
> allow the external clients to connect? Which one you recommend?
>
> Thank you!



Posted by =?Utf-8?B?Sm9obg==?= on November 1, 2007, 2:29 pm
If you were  Registered and logged in, you could reply and use other advanced thread options
Thanks for your reply.
> VPN over SSL is more secure than HTTP over SSL
due to my limited knowledge, can you explain why VPN over SSL is more secure
than HTTP over SSL?

"jwgoerlich@gmail.com" wrote:

> VPN over SSL is more secure than HTTP over SSL. It is more management,
> too, of course. Definitely put the device in a screened subnet (DMZ).
>
> J Wolfgang Goerlich
>
> > Hi all,
> >
> > We have extranet set up to allow clients to retrieve
> > their files from my company. We try to decide whether
> > we should use DMZ (put the web server in DMZ and buy the
> > certificate to allow SSL connection or VPN over SSL to
> > allow the external clients to connect? Which one you recommend?
> >
> > Thank you!
>
>
>

Posted by on November 1, 2007, 3:39 pm
If you were  Registered and logged in, you could reply and use other advanced thread options
HTTP over SSL encrypts client-server information only. This means that
the URL and any Form method=get requests will be in the clear. Also,
anything outside HTTP -- such as FTP, perhaps -- would be unprotected.

A VPN keeps all application and session information confidential.

J Wolfgang Goerlich


> Thanks for your reply.> VPN over SSL is more secure than HTTP over SSL
>
> due to my limited knowledge, can you explain why VPN over SSL is more secure
> than HTTP over SSL?
>
>
>
> "jwgoerl...@gmail.com" wrote:
> > VPN over SSL is more secure than HTTP over SSL. It is more management,
> > too, of course. Definitely put the device in a screened subnet (DMZ).
>
> > J Wolfgang Goerlich
>
> > > Hi all,
>
> > > We have extranet set up to allow clients to retrieve
> > > their files from my company. We try to decide whether
> > > we should use DMZ (put the web server in DMZ and buy the
> > > certificate to allow SSL connection or VPN over SSL to
> > > allow the external clients to connect? Which one you recommend?
>
> > > Thank you!- Hide quoted text -
>
> - Show quoted text -



Posted by Roger Abell [MVP] on November 1, 2007, 9:48 pm
If you were  Registered and logged in, you could reply and use other advanced thread options
> Hi all,
>
> We have extranet set up to allow clients to retrieve
> their files from my company. We try to decide whether
> we should use DMZ (put the web server in DMZ and buy the
> certificate to allow SSL connection or VPN over SSL to
> allow the external clients to connect? Which one you recommend?
>

"allow the external clients to connect" to what ?
What is it that you are most wanting to secure? The files served
to the external clients and its webserver, or the "to what" ?
If the "to what" is a screened network, not outside, but not
your internal network, then perhaps that is better.




Similar ThreadsPosted
best exchange secured option January 11, 2006, 9:24 am
exchange best secured option January 11, 2006, 9:26 am
Secured domain admin using MMC Snapins November 21, 2007, 10:26 am
Several user accounts can't authenticate to secured wireless netwo October 24, 2005, 4:12 pm

The site map in XML format XML site map

Contact Us | Privacy Policy