Firewall Wizards mailing list archives

Re: SSH question

From: Michael Lerperger <mlerp () whoi edu>
Date: Sat, 11 Apr 1998 17:15:34 -0400

Another, much cleaner way is, of course, to compile ssh with SOCKS
support. Most firewall products will support that, too. One advantage is
that, if configured right on your client, you can transparently use ssh
both to machines inside and outside yor firewalled LAN.

-Michael


Adam Shostack wrote:

And SSH can be tunneled via most companies' SSL
'proxies.'


Exactly, and that's because most "SSL" proxies know nothing about
the SSL protocol; they just use the HTTP CONNECT extension method
to build an HTTP-based circuit gateway, or use some other circuit
mechanism (e.g., Raptor's older httpd doing transparent relaying
on 443/tcp).

Current thread:

SSH question Roy Stevens (Apr 06)
- Re: SSH question Adam Shostack (Apr 08)
  - Re: SSH question Kevin Steves (Apr 11)
    - Re: SSH question Michael Lerperger (Apr 11)
    - Re: SSH question -= ArkanoiD =- (Apr 13)
    - Re: SSH question Michael Lerperger (Apr 13)
    - Re: SSH question -= ArkanoiD =- (Apr 14)
  - Re: SSH question -= ArkanoiD =- (Apr 13)
    - Re: SSH question Michael Lerperger (Apr 13)
    - Re: SSH question -= ArkanoiD =- (Apr 14)
- Re: SSH question Joseph M McKenna (Apr 08)
- Re: SSH question -= ArkanoiD =- (Apr 08)