[Twisted-Python] Does Twisted support TCP MD5 Signature Option?
Hi experts Does Twisted support TCP MD5 Signature Option? If does, how to use this? Very thanks. Best Regards, Xiao Peng
On 01:40 am, penxiao@cisco.com wrote:
Not specifically. You can get the underlying socket and call `setsockopt´ on it, though. I've never used TCP MD5 signatures (it's a pretty obscure feature that is not widely used), is being able to set the socket option sufficient to "use" the feature? Jean-Paul
On 13/09/12 12:59, exarkun@twistedmatrix.com wrote:
It's worth noting it has to be compiled into your kernel. I'm somewhat curious what the OPs use-case is; the original use was for protecting BGP sessions, but I understand it's specified in some versions of the PCI standards (the credit card stuff, not the peripheral slot) now? For what it's worth, I think it's the wrong solution to almost all problems. TLS is far, far superior, as is IPSec/AH if you need the traffic to be protected but in cleartext.
On 01:40 am, penxiao@cisco.com wrote:
Not specifically. You can get the underlying socket and call `setsockopt´ on it, though. I've never used TCP MD5 signatures (it's a pretty obscure feature that is not widely used), is being able to set the socket option sufficient to "use" the feature? Jean-Paul
On 13/09/12 12:59, exarkun@twistedmatrix.com wrote:
It's worth noting it has to be compiled into your kernel. I'm somewhat curious what the OPs use-case is; the original use was for protecting BGP sessions, but I understand it's specified in some versions of the PCI standards (the credit card stuff, not the peripheral slot) now? For what it's worth, I think it's the wrong solution to almost all problems. TLS is far, far superior, as is IPSec/AH if you need the traffic to be protected but in cleartext.
participants (3)
-
exarkun@twistedmatrix.com -
Peng Xiao -X (penxiao - DLSP at Cisco) -
Phil Mayers