| Computers Forum Index » Computer - Databases - Informix » dbaccess with onsocssl... |
|
Page 1 of 1 |
|
| Author |
Message |
| red_valsen at (no spam) yahoo.com... |
 Posted: Fri Nov 06, 2009 7:33 pm |
|
|
|
Guest
|
Can dbaccess use an onsocssl connection?
Running IDS 11.50.FC4 on hpux11.23 |
|
|
| Back to top |
|
|
|
| Jonathan Leffler... |
| Posted: Sun Nov 08, 2009 11:41 am |
|
|
|
Guest
|
red_valsen at (no spam) yahoo.com wrote:
Quote: Can dbaccess use an onsocssl connection?
Running IDS 11.50.FC4 on hpux11.23
Yes.
Why are you asking?
--
Jonathan Leffler #include <disclaimer.h>
Email: jleffler at (no spam) earthlink.net, jleffler at (no spam) us.ibm.com
Guardian of DBD::Informix v2008.0229 -- http://dbi.perl.org/
publictimestamp.org/ptb/PTB-7578 ripemd256 2009-11-08 06:00:05
73D88DEB3BF82FBE8AAA5684B9395A5A47BBCD9600181387B8AC5DD7150E3F8B |
|
|
| Back to top |
|
|
|
| red_valsen at (no spam) yahoo.com... |
| Posted: Tue Nov 10, 2009 8:33 pm |
|
|
|
Guest
|
On Nov 6, 2:33 pm, "red_val... at (no spam) yahoo.com" <red_val... at (no spam) yahoo.com>
wrote:
Quote: Can dbaccess use an onsocssl connection?
Running IDS 11.50.FC4 on hpux11.23
To use dbaccess with IDS ssl protocol, dbaccess must be set up like
any other client tool i.e., a client key db file must be created in
$INFORMIXDIR/etc using the gsk7capicmd application, etc. RTFM for SSL
use with (Windows) client applications and adjust for Unix/Linux. |
|
|
| Back to top |
|
|
|
| red_valsen at (no spam) yahoo.com... |
| Posted: Fri Nov 13, 2009 2:52 pm |
|
|
|
Guest
|
On Nov 10, 3:33 pm, "red_val... at (no spam) yahoo.com" <red_val... at (no spam) yahoo.com>
wrote:
Quote: On Nov 6, 2:33 pm, "red_val... at (no spam) yahoo.com" <red_val... at (no spam) yahoo.com
wrote:
Can dbaccess use an onsocssl connection?
Running IDS 11.50.FC4 on hpux11.23
To use dbaccess with IDS ssl protocol, dbaccess must be set up like
any other client tool i.e., a client key db file must be created in
$INFORMIXDIR/etc using the gsk7capicmd application, etc. RTFM for SSL
use with (Windows) client applications and adjust for Unix/Linux.
Also, every single individual user must use the SAME client keystore
for root certificates, defaulting to location ${INFORMIXDIR}/etc.
But when the repository is created by user 'informix', its permissions
are read/write by user 'informix' only, so it needs
to be chmod'ed. I wasn't able to find an alternative in the
documentation (IBM Informix Security Guide Version 11.50,
Ch. 2 "Network Data Encryption," Sect. "Secure Sockets Layer
Protocol"), though the location can be specified in the
conssl.cfg file which, in turn, must be located in ${INFORMIXDIR}/etc.
I'd be exceedingly happy to be corrected on this last. Should every
client user reference the same keystore? |
|
|
| Back to top |
|
|
|
|
