SSH

Terminology

The following terms are used throughout the Tectia Server for IBM z/OS documentation.

client computer

The computer from which the Secure Shell connection is initiated.

Connection Broker

The Connection Broker is a component included in the Tectia Server for IBM z/OS client tools. It consists of the ssh-broker-g3 process and the ssh-broker-ctl control process. The Connection Broker handles all cryptographic operations and authentication-related tasks.

FTP-SFTP conversion

Tectia SOCKS Proxy can automatically capture FTP connections on the client and convert them to SFTP and direct them to an SFTP server running Tectia Server, or another vendor's Secure Shell server software.

host key pair

A public-key pair used to identify a Secure Shell server. The private key file is accessible only to the server. The public key file is distributed to users connecting to the server.

remote host

Refers to the other party of the connection, client computer or server computer, depending on the viewpoint.

scpg3

A command-line Secure Shell client for secure copy. scpg3 is a secure replacement for remote copy (rcp) and provides easy secure non-interactive file transfers.

Secure Shell client

A client-side application that uses the Secure Shell version 2 protocol, for example scpg3, sftpg3, or sshg3 of Tectia client tools for z/OS.

Secure Shell server

A server-side application that uses the Secure Shell version 2 protocol.

server computer

The computer on which the Secure Shell service is running and to which the Secure Shell client connects.

SFTP server

A server-side application that provides a secure file transfer service as a subsystem of the Secure Shell server.

sftpg3

A command-line Secure Shell client for secure file transfer. sftpg3 is a secure replacement for FTP and provides a user interface for interactive file transfers and a batch mode for unattended file transfers.

SOCKS Proxy

Tectia SOCKS Proxy is used for transparent FTP tunneling and FTP-SFTP conversion. It consists of the ssh-socks-proxy process and ssh-socks-proxy-ctl control process.

sshd2

The main Secure Shell server daemon of Tectia Server for IBM z/OS.

sshg3

A command-line Secure Shell client that can be used as a secure replacement for Telnet and other unsecured terminal applications. sshg3 can also be used for remote command and job execution, and for creating secure tunnels for TCP applications.

Tectia client tools for z/OS

Tectia Server for IBM z/OS includes client tools, which consist of the Connection Broker, Secure Shell command-line tools (sshg3, scpg3, sftpg3), auxiliary command-line tools, and the SOCKS Proxy .

Tectia client/server solution

The Tectia client/server solution consists of Tectia Client, Tectia ConnectSecure, Tectia Server, and Tectia Server for IBM z/OS (including the Tectia Server for IBM z/OS client tools).

Tectia Server for IBM z/OS

Tectia Server for IBM z/OS is a server-side component where Secure Shell clients connect to. It consists of two processes: sshd2 and ssh-certd (the Certificate Validator). Tectia Server for IBM z/OS provides normal Secure Shell connections and supports secure TN3270 connectivity, transparent FTP tunneling, FTP-SFTP conversion and enhanced file transfer features on IBM z/OS.

Tectia SSH Assistant

The Tectia SSH Assistant ISPF application provides an interface for installing, configuring and running Tectia client tools for z/OS using traditional MVS tools (ISPF and JCL), without requiring the use of the Unix shell.

transparent FTP tunneling

An FTP connection transparently encrypted and secured by a Secure Shell tunnel.

tunneled application

A TCP application secured by a Secure Shell connection.

user key pair

A public-key pair used to identify a Secure Shell user. The private key file is accessible only to the user. The public key file is copied to the servers the user wants to connect to.