Re: SSH thru HTTP? Sounds backwards.

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



Title: SSH thru HTTP? Sounds backwards.
    Very easy.  I used to do this all the time at the last company I worked at because they did not allow ssh out and I wanted to log into my home box.  Actually, the remote server doesn't even have to be listening on port 80, I had ssh running on the standard 22 remotely.  I used a little program called corkscrew which can tunnel through many proxies.  It even compiles under cygwin so you can use it under Winbloze.  Check it out:
 
 
Michael French
----- Original Message -----
Sent: Monday, October 13, 2003 11:04 AM
Subject: SSH thru HTTP? Sounds backwards.

Hello all.

A colleague asked me a question that I was unable to answer, so I thought one of you might be able to help.

He asked me "is it possible for someone inside my organization to twart security by ssh tunneling thru my HTTP proxy server to a destination SSH server listening on port 80".  I don't know what http proxy he's running and we didn't talk about SSL or 443 proxy - I'm assuming the same rules would apply.

My initial reaction was "no, it's not a hole", but then I thought about some "less intelligent" proxies that don't inspect packet content... and that was the end of my expertise.

Is it possible?  or better question, is it likely?
-=Berns


------
Bernard Hoffman
Captive Capital Corp.  (f.k.a. eMarket Capital, Inc.)
http://www.captivecorp.com




[Index of Archives]     [Fedora Announce]     [Linux Crypto]     [Kernel]     [Netfilter]     [Bugtraq]     [USB]     [Fedora Security]

  Powered by Linux