* derleader mail on Monday, May 02, 2011 8:14 PM > > But what exactly do you want to know? If you can use SSL and > > Blowfish? > > It does not appear in http://www.openssl.org/docs/apps/ciphers.html. > > > Yes the web site and the book about the OpenSSL is outdated.
Does TLS spec nowadays defines a Blowfish cipher suite? > If you have to design high performance server which must be > able to process many requests from clients how are you going > to design it? Lets say something like Nagios. Could you > explain in details? I would have one or two central Nagios servers that remotely collect the data. I would consider SSL (probably in form of stunnel) and SSH. Since establishing costs most performance, the SSL or SSH tunnel should be kept. I think first I would favor SSH, because I have a Linux Nagios server and would use some u*nx for the high performance servers and would have SSH available anyway. By this, the plugins running on the Nagios server could be shell scripts (or perl or whatever). Maybe having some server reachable locally only, thus remotely via stunnel or SSH port forwarder, could offer the needed data, which could be queried by Nagios plugin scripts. Of course all of this depends on the detailed requirements. I think, often monitoring has to be maintained and extended (i.e. when the UPS failed the first time, from that on you will monitor the serial link to it and it's battery level etc), so I think it is good to have something that can quickly adopted to new requirements. To monitor load and disk usage, BTW, I do not use any cryptography, because this is non-secret data in the monitoring net (read-only SNMP is used). oki, Steffen ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager majord...@openssl.org
