Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:
edgeos



Firewall Wizards: Re: SSH question

Re: SSH question

From: -= ArkanoiD =- <ark_at_mpak.convey.ru>
Date: Tue, 14 Apr 98 23:21:47 +0300

nuqneH,

=> Date: Mon, 13 Apr 1998 15:58:14 -0400
=> From: Michael Lerperger <mlerp_at_whoi.edu>
=> To: -= ArkanoiD =- <ark_at_mpak.convey.ru>
=> Cc: firewall-wizards_at_nfr.net
=> Subject: Re: SSH question

[dd]

Yep, i know sshd does support x11 forwarding. I mean i did not find proper
way to proxy it when i do ssh-to-telnet translation. Actually i do know what
to do but i had no time to implement that.

=> Cut and paste from the sshd man page:
=>
=> X11Forwarding
=> Specifies whether X11 forwarding is permitted. The
=> default is "yes". Note that disabling X11 forward-
=> ing does not improve security in any way, as users
=> can always install their own forwarders.
=>
=> -Michael
=>
=>
=> > Hmm, i translate incoming ssh to telnet on internal network and everything
=> > other than terminal connection itself is disabled. Even X (although i did
=> > not solve X over ssh proxying problem the proper way)
=> >
=>
=>

---
                                       _ _ _ _ _ _ _
   Must be a visit from the dead.. _| o |_ | | _|| | / _||_| |_ |_ |_
   CU in Hell .......... Arkan#iD |_ o _||_| _||_| / _| | o |_||_||_|
Received on Apr 14 1998

[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]
edgeos