Re: SSH question

From: Michael Lerperger (mlerpat_private)
Date: Sat Apr 11 1998 - 14:15:34 PDT

Next message: Michael Lerperger: "Re: SSH question"

Previous message: Chris Lonvick: "Re: DMZ config question"
Maybe in reply to: Roy Stevens: "SSH question"
Next in thread: Michael Lerperger: "Re: SSH question"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Another, much cleaner way is, of course, to compile ssh with SOCKS
support. Most firewall products will support that, too. One advantage is
that, if configured right on your client, you can transparently use ssh
both to machines inside and outside yor firewalled LAN.

-Michael

> 
> Adam Shostack wrote:
> > And SSH can be tunneled via most companies' SSL
> > 'proxies.'
> 
> Exactly, and that's because most "SSL" proxies know nothing about
> the SSL protocol; they just use the HTTP CONNECT extension method
> to build an HTTP-based circuit gateway, or use some other circuit
> mechanism (e.g., Raptor's older httpd doing transparent relaying
> on 443/tcp).
>

Next message: Michael Lerperger: "Re: SSH question"
Previous message: Chris Lonvick: "Re: DMZ config question"
Maybe in reply to: Roy Stevens: "SSH question"
Next in thread: Michael Lerperger: "Re: SSH question"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Fri Apr 13 2001 - 12:54:09 PDT