Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

firewall-wizards logo Firewall Wizards mailing list archives

Re: SSH question
From: "-= ArkanoiD =-" <ark () mpak convey ru>
Date: Mon, 13 Apr 98 00:54:16 +0300
nuqneH,

=> From: Adam Shostack <adam () homeport org>
=> Message-Id: <199804071306.JAA28023 () homeport org>
=> Subject: Re: SSH question
=> To: tobor () ns CompuNetServices com
=> Date: Tue, 7 Apr 1998 09:06:27 -0400 (EDT)

[dd]

=> Note that if you allow inbound ssh, to a workstation, they can use
=> that to proxy just about anything, but if you allow inbound access to
=> any machine where someone who you don't trust has root, they can be a
=> proxy.

Hmm, i translate incoming ssh to telnet on internal network and everything
other than terminal connection itself is disabled. Even X (although i did
not solve X over ssh proxying problem the proper way)

--- 
                                       _     _  _  _  _      _  _
   Must be a visit from the dead..     _| o |_ | | _|| |   / _||_|   |_ |_ |_
   CU in Hell ..........  Arkan#iD    |_  o  _||_| _||_| /   _|  | o |_||_||_|

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]