Submit Hint Search The Forums LinksStatsPollsHeadlinesRSS
14,000 hints and counting!

Securely connect to WebDAV servers Internet
I'm always a little concerned about using WebDAV services insecurely across HTTP. However, the Apple WebDAV client cannot use SSL ... until now. Just grab and install these two packages - OpenSSL and Stunnel. Both compile right up on Mac OS X, so just follow the instructions inside. After compiling, use the following Terminal command to start stunnel:
 % /usr/local/sbin/stunnel -c -d :1999 -r server:443
Replace server with the name of the system with the secure WebDAV service. Next, use the Connect to server command in the Finder and enter the following address:
 http://127.0.0.1:1999/service_name/
Replace service_name with the remainder of the WebDAV URL on the remote system.

This works by creating an insecure connection between the WebDAV client and stunnel, both running on your local machine, and a secure connection between stunnel and the remote machine. Note that iDisk does *not* support a secure connection, so this tip won't help with iDisk.
    •    
  • Currently 4.33 / 5
  You rated: 4 / 5 (3 votes cast)
 
[12,460 views]  

Securely connect to WebDAV servers | 2 comments | Create New Account
Click here to return to the 'Securely connect to WebDAV servers' hint
The following comments are owned by whoever posted them. This site is not responsible for what they say.
compiling openssl
Authored by: George Frederick on Apr 19, '02 11:26:19AM

This tip kind of glosses over how to compile openssl.

Fortunately, there's instructions on how to do it on the Stepwise web site (www.stepwise.com)

The exact link is here http://www.stepwise.com/Articles/Workbench/2001-12-17.01.html

It's part of the instructions on how to update to OpenSSH 3.1 (this was published before Apple's April Security fix).

I recommend running the whole set of instructions, as Apple's installation of OpenSSH 3.1 doesn't allow you to use tcp-wrappers with your ssh session. The instructions on this site will remedy that situation.

FYI, tcp-wrappers act as a sort of firewall that allows you to determine who can ssh, ftp, etc, into your computer. (After install, you'll want to add a hosts.allow file to your /etc directory.)

The default installation of openSSH from Apple allows anyone with a username and password to access your computer. With tcp-wrappers, they have to be coming from an approved ip address or domain name, even if they have a username and password.)



[ Reply to This | # ]
WebDAV, uh, sucks?
Authored by: phyxeld on May 24, '02 03:28:16PM

Is it just me, or is WebDAV is absolute worst protocol ever? (Or is it just iDisk?)

When I connect to my idisk from either my OS X iBook or my win2k pc, almost every time I end up with Finder (or Explorer.exe in win2k) hanging and having to be relaunched. I'm on fast connections (dsl at home, t1 at work), with fast computers, I don't see why it has to suck so badly. I gave up on iDisk after the last time I tried it. (made the mistake of opening files from the idisk in a few other apps, so when in inevitably hung I had to kill them ALL off)



[ Reply to This | # ]