If you are looking for a secure SSH/telnet/rlogin client, SecureNetTerm has the tools you need to protect your company and your data from prying eyes.
SecureNetTerm is a fully functional user friendly windows based client/server application designed to interface with telnet, telnet-TLS/SSL, rlogin, and SSH servers located on UNIX style hosts. SecureNetTerm builds upon the popular and proven NetTerm by adding secure authentication and encryption. The software supports open source encryption software including Kerberos, SRP, OpenSSL, and OpenSSH.
Installation and setup is simple. With SecureNetTerm your transition from an insecure telnet environment to a secure telnet/ssh environment is easy, and in most cases transparent to the user.
SecureNetTerm includes support for a windows based SSH key agent, SecureKeyAgent, supporting both disk and Smart Card/USB tokens, public/private keys, as well as PKI certificates. SecureKeyAgent uses state-of-the-art hardware and software integration to ensure that the person accessing your confidential data is authorized, legitimate, and securely connected. SecureKeyAgent has been tested with the Aladdin eToken, RainBow iKey 2000 series, the GemPlus smart card and the Sony FIU-810 fingerprint/PKI token.
SecureNetTerm supports the SSH authentication methods of password, public/private key, Kerberos 5, S/Key, OPIE,hostbased and GSI-GSSAPI. The GSI-GSSAPI method supports the mechanisms of Kerberos 5 external-keyx, Globus gssapi external-keyx, gssapi, and gssapi-with-mic. The gssapi external-keyx mechanism allows the userid to be determined by the SSH server using the users proxy certificate and the Globus grid-mapfile. The Kerberos 5 support is provided by the standard MIT software distribution.
In addition to the authentications listed above, SecureNetTerm fully supports X509 certificate authentication, including user and host certificates. The SecureNetTerm certificate support has been certified to work with the OpenSSH server, modified by the X.509 patch available from Roumen Petrov and the Tectia 6 servers. Certificate based host keys are verified using standard certificate revocation (CRL) methods including support for LDAP and OCSP responders. The standard SSH known_hosts files can be elimated by the use of a user specified certificate pattern, which the server certificate must meet in order to be accepted. In addition to the internal revocation support, SecureNetTerm also allows the selection of the standard Microsoft revocation process. This allows those companies that have their own LDAP/OCSP responder plugins to the Microsoft cryptoapi to be utilized.
SecureNetTerm also supports the Homeland Security HSPD-12 PIV and the Department of Defense CAC smart cards for SSH certificate authentication. SecureNetTerm intefaces with the ActivClient 6.2 CSP provider, the Windows 7 / Windows 8 internal PIV/CAC cryptographic service provider and the windows based open-source CoolKey CSP.
SecureNetTerm supports advanced SSL/TLS telnet servers which provide advanced authentication methods as well as secure encrypted data channels. Governments worldwide are now requiring financial and health care data to be protected by these advanced authentication and encryption methods. SecureNetTerm is being used by healh related organizations that use the InterSystems CachÃ© post-relational database system to provide these secure communications methods.
SecureNetTerm also supports complete FTP port forwarding for all FTP clients that support passive (PASV) data connections. Both the command and data channels are encrypted and under the complete control of SSH. SecureNetTerm provides terminal emulation of VT-52, VT-100, VT-102, VT-220, VT-320, ANSI,ANSI-BBS, SCO-ANSI, QNX-2, IBM-3101, IBM-3151, IBM-3161 , IBM-3163, IBM FTTERM, Televideo 925, Wyse 50/60, and the Nixdolf BA-80.
What's New in version 188.8.131.52?
- Added support for IPv6 in socks5 proxy.
- Added support for x509v3 ECC Certificates.
- General maintenance.
Please Read Carefully
SecureNetTerm includes strong cryptography. U.S. export regulations for encryption software require an eligibility screen before downloading is allowed. This software is subject to export control and may be transmitted, exported or re-exported only under applicable export laws and restrictions and regulations of the United States Bureau of Industry and Security or foreign agencies or authorities. SecureNetTerm can be downloaded to all countries except Cuba, Iran, Iraq, Libya, North Korea, Sudan and Syria.