Tarantella Administration Guide > Security > Improving security between Tarantella servers and application servers

Improving security between Tarantella servers and application servers

The level of security between Tarantella and your application servers varies depending on the types of application server and the protocols they use.

UNIX application servers

Normally all communications and passwords are transmitted unencrypted (in the clear) when using protocols such as rlogin or rsh, for example. You can download and install SSH (Secure Shell), which provides a more secure alternative. SSH encrypts all communications between hosts and encrypts passwords before they are transmitted. See Installing and using SSH with Tarantella for more information.

Windows application servers

• Using Windows NT 4 Terminal Server Edition or Windows 2000/2003 Server: all communication uses the RDP protocol, which is encrypted as standard.
• Using Citrix UNIX Integration Services, WinCenter, SCO Merge or WinFrame/MetaFrame: as with UNIX application servers, all communication is in the clear using either the rcmd or telnet protocol.

Web application servers

The level of security depends on the type of web server you are using to host the web application:

• HTTP web servers: all communications and passwords are transmitted in the clear.
• HTTPS (secure) web servers: all communications and passwords are encrypted before transmission using SSL.

For secure connections to your web application servers we recommend using HTTPS.