Firewall Wizards mailing list archives

Re: SSH question

From: "-= ArkanoiD =-" <ark () mpak convey ru>
Date: Tue, 14 Apr 98 23:21:47 +0300

nuqneH,

=> Date: Mon, 13 Apr 1998 15:58:14 -0400
=> From: Michael Lerperger <mlerp () whoi edu>
=> To: -= ArkanoiD =- <ark () mpak convey ru>
=> Cc: firewall-wizards () nfr net
=> Subject: Re: SSH question

[dd]

Yep, i know sshd does support x11 forwarding. I mean i did not find proper
way to proxy it when i do ssh-to-telnet translation. Actually i do know what
to do but i had no time to implement that.

=> Cut and paste from the sshd man page:
=>
=> X11Forwarding
=>        Specifies whether X11 forwarding is permitted.  The
=>        default is "yes".  Note that disabling X11 forward-
=>        ing  does not improve security in any way, as users
=>        can always install their own forwarders.
=>
=> -Michael
=>
=>
=> > Hmm, i translate incoming ssh to telnet on internal network and everything
=> > other than terminal connection itself is disabled. Even X (although i did
=> > not solve X over ssh proxying problem the proper way)
=> >
=>
=>

--- 
                                       _     _  _  _  _      _  _
   Must be a visit from the dead..     _| o |_ | | _|| |   / _||_|   |_ |_ |_
   CU in Hell ..........  Arkan#iD    |_  o  _||_| _||_| /   _|  | o |_||_||_|

Current thread:

SSH question Roy Stevens (Apr 06)
- Re: SSH question Adam Shostack (Apr 08)
  - Re: SSH question Kevin Steves (Apr 11)
    - Re: SSH question Michael Lerperger (Apr 11)
    - Re: SSH question -= ArkanoiD =- (Apr 13)
    - Re: SSH question Michael Lerperger (Apr 13)
    - Re: SSH question -= ArkanoiD =- (Apr 14)
  - Re: SSH question -= ArkanoiD =- (Apr 13)
    - Re: SSH question Michael Lerperger (Apr 13)
    - Re: SSH question -= ArkanoiD =- (Apr 14)
- Re: SSH question Joseph M McKenna (Apr 08)
- Re: SSH question -= ArkanoiD =- (Apr 08)