Firewall Wizards: Re: SSH question

Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Firewall Wizards mailing list archives

Re: SSH question

From: Michael Lerperger <mlerp () whoi edu>
Date: Sat, 11 Apr 1998 17:15:34 -0400

Another, much cleaner way is, of course, to compile ssh with SOCKS
support. Most firewall products will support that, too. One advantage is
that, if configured right on your client, you can transparently use ssh
both to machines inside and outside yor firewalled LAN.

-Michael


Adam Shostack wrote:

And SSH can be tunneled via most companies' SSL
'proxies.'


Exactly, and that's because most "SSL" proxies know nothing about
the SSL protocol; they just use the HTTP CONNECT extension method
to build an HTTP-based circuit gateway, or use some other circuit
mechanism (e.g., Raptor's older httpd doing transparent relaying
on 443/tcp).

By Date By Thread

Current thread:

SSH question Roy Stevens (Apr 06)
- Re: SSH question Adam Shostack (Apr 08)
  - Re: SSH question Kevin Steves (Apr 11)
    - Re: SSH question Michael Lerperger (Apr 11)
    - Re: SSH question -= ArkanoiD =- (Apr 13)
    - Re: SSH question Michael Lerperger (Apr 13)
    - Re: SSH question -= ArkanoiD =- (Apr 14)
  - Re: SSH question -= ArkanoiD =- (Apr 13)
    - Re: SSH question Michael Lerperger (Apr 13)