Security Basics mailing list archives

Re: ssh tunneling to bypass web proxy rules

From: William Hile <while () griff-n-gwyn com>
Date: Tue, 23 Aug 2005 05:23:37 -0700 (PDT)

The only way to actually stop this would be to block outbound SSHcompletely. As long as this person has a shell account that accepts SSH hecan tunnel basically anything through there. As far as telling you howthat would depend on the SSH client side... there are several ways to doit... But to stop him just block outbound SSH.




William Hile, CCSA, CCSE

On Sun, 21 Aug 2005, Juan B wrote:

Hi,

Someone told me one can pass web proxy restrictions by
tunnling throw ssh to restricted web sites like web
mail sites in our corporate network.I really whant to
know how he is doing that but I dont know where and
how to test it, and he of course doesnt tell.

I need to close this hole in the network.

can someone give me a hand please.

Juan.

__________________________________________________
Do You Yahoo!?
Tired of spam?  Yahoo! Mail has the best spam protection around
http://mail.yahoo.com

Current thread:

ssh tunneling to bypass web proxy rules Juan B (Aug 22)
- Re: ssh tunneling to bypass web proxy rules Alexander Klimov (Aug 23)
  - Re: ssh tunneling to bypass web proxy rules Par Leijonhufvud (Aug 24)
- Re: ssh tunneling to bypass web proxy rules Saqib Ali (Aug 23)
- Re: ssh tunneling to bypass web proxy rules Gonzalo Martinez (Aug 23)
- Re: ssh tunneling to bypass web proxy rules Sagiko (Aug 23)
- Re: ssh tunneling to bypass web proxy rules James Leighe (Aug 23)
- Re: ssh tunneling to bypass web proxy rules William Hile (Aug 23)
  - Re: ssh tunneling to bypass web proxy rules Oliver Leitner (Aug 24)
  - Re: ssh tunneling to bypass web proxy rules Times Enemy (Aug 24)
- Re: ssh tunneling to bypass web proxy rules Barrie Dempster (Aug 24)
- <Possible follow-ups>
- RE: ssh tunneling to bypass web proxy rules Kirk Brady (Aug 23)
- RE: ssh tunneling to bypass web proxy rules Conlan Adams (Aug 23)