Security Basics mailing list archives
Re: ssh tunneling to bypass web proxy rules
From: Sagiko <sagiko () gmail com>
Date: Tue, 23 Aug 2005 10:09:39 +0800
hi, There are a number of ways to do it. Assume this guy has full control over an external server and your firewall or filtering mechanism does not stop him from access to that server through SSH (outbound port 22). What he will do is port forwarding the webtraffic (port 80) using SSH (check the -L or -R option in the man manual) from his pc (inside your network) to his external server. At his external server, the SSH daemon will pick up this traffic and redirect it back to normal web traffic. What you can do to stop this is to filter or at least limit unnecessory outbound SSH traffics. Or you can get a firewall which have the feature to check tunneled traffics and protocols. Also he can choose to use an external proxy server to by pass your local proxy restrictions as long as your local proxy allow him to connect to that external proxy. (although that's not really a SSH tunneling). regards, Rick Zhong Liming ============================================ Welcome to SINgapore <IN>FOSECurity Interest Group at: www.sinfosec.org On 8/21/05, Juan B <juanbabi () yahoo com> wrote:
Hi, Someone told me one can pass web proxy restrictions by tunnling throw ssh to restricted web sites like web mail sites in our corporate network.I really whant to know how he is doing that but I dont know where and how to test it, and he of course doesnt tell. I need to close this hole in the network. can someone give me a hand please. Juan. __________________________________________________ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com
Current thread:
- ssh tunneling to bypass web proxy rules Juan B (Aug 22)
- Re: ssh tunneling to bypass web proxy rules Alexander Klimov (Aug 23)
- Re: ssh tunneling to bypass web proxy rules Par Leijonhufvud (Aug 24)
- Re: ssh tunneling to bypass web proxy rules Saqib Ali (Aug 23)
- Re: ssh tunneling to bypass web proxy rules Gonzalo Martinez (Aug 23)
- Re: ssh tunneling to bypass web proxy rules Sagiko (Aug 23)
- Re: ssh tunneling to bypass web proxy rules James Leighe (Aug 23)
- Re: ssh tunneling to bypass web proxy rules William Hile (Aug 23)
- Re: ssh tunneling to bypass web proxy rules Oliver Leitner (Aug 24)
- Re: ssh tunneling to bypass web proxy rules Times Enemy (Aug 24)
- Re: ssh tunneling to bypass web proxy rules Barrie Dempster (Aug 24)
- <Possible follow-ups>
- RE: ssh tunneling to bypass web proxy rules Kirk Brady (Aug 23)
- RE: ssh tunneling to bypass web proxy rules Conlan Adams (Aug 23)
- Re: ssh tunneling to bypass web proxy rules Alexander Klimov (Aug 23)