[Box Backup] SSH instead of SSL?

Magnus Homann boxbackup@fluffy.co.uk
Fri, 21 Apr 2006 20:24:58 +0200


Many have already setup SSH, and sometims that's the only allowable 
connection to the outside world. Opening up the BB port (2201?) is 
sometimes a major issue.

The solution to that is many cases, to use ssh to tunnel the traffic, 
You then don't have to involve the sysadmin on the server at all.

With SSH, doesn't the need for SSL then go away mostly? The only 
remaining issue is the clients private key to encrypt/decrypt the 
backup. That could then be done by any (symmetric?) key, and not 
necessitate the (complex?) certificates setup.

Would it be feasible to implement the tools without SSL, so that the 
workload of the CPU and the complexity of the setup diminish? For 
private secure networks and for SSH-tunnels, that should be enough.

Any thoughts?