RE: SSH and firewall [Heeeelllllpppppp!!!!!!]

>From what I understand Cedric is trying to do the reverse, i.e. reach his
home PC from work. And work have got a decent security policy...

Having port 443 open (on your home server) if the only port you can through
is 80 (work) is not going to do much good...

Have you tried going through the proxy? What SSH client are you using?
Putty has support for going through proxies (HTTP, Socks, Telnet, +-
login/password). I was using Putty to go through a proxy for a few months
until work shutdown everything - now I get the error "Putty fatal error -
Proxy error 403 forbidden" if I try to connect to my SSH server with Putty
(whereas with IE 6, I get "SSH-2.0-OpenSSH_3.7.1p1 Protocol mismatch.").

I'd forgotten about HTTPtunnel
<http://www.nocrew.org/software/httptunnel.html>, personally I've been
meaning to try out Stunnel <http://www.stunnel.org/> for the last few weeks
but have not had the time. Not sure about httptunnel, but Stunnel just
creates a tunnel AFAIK - which means I'd have to setup a telnet server on my
home pc (or just use VNC) to be able to "do anything".

If I *really* needed to do this, the first thing I would do would be to
contact IT (as other posters have suggested) and see if we could come to an
arrangement. Only I don't *really* need this, I'm doing this for the *fun*
and for a better understanding of these technologies.

HTH

Chris

P.s. I tried http://desproxy.sourceforge.net/ a while ago, but that (not so
surprisingly) didn't work.

-----Original Message-----
Date: Thu, 11 Dec 2003 08:49:01 -0500
From: "Carl Herrera - WC4H" <wc4h@bellsouth.net>
Subject: RE: SSH and firewall [Heeeelllllpppppp!!!!!!]
To: "Secure Shell Discussions" <ssh-l@erdelynet.com>
Message-ID: <PDEHKENCBCEHBNMMDJPMGEELDJAA.wc4h@bellsouth.net>
Content-Type: text/plain; charset="iso-8859-1"

I assume you want to access the work computer from home. If so, you should
ask your IT department to open port 22 or some other port for your SSH
access. If they have them all closed, it may be related to a policy of no
remote access so you need to be careful.

Also, see if they already have VPN or other method available.

Carl

-----Original Message-----
From: ssh-l-bounces@erdelynet.com [mailto:ssh-l-bounces@erdelynet.com]On
Behalf Of cdrik_trash@no-log.org
Sent: Thursday, December 11, 2003 7:58 AM
To: ssh-l@erdelynet.com
Subject: SSH and firewall [Heeeelllllpppppp!!!!!!]

Ok,

Now my SSH server is running on port 443.

This is my pb:
- The only port opened at work is the 80
- even on port 80, it's need an http authentification (by login & password)

I gonna confugure my shh server to listen en port 80
So...When i want to connect to my ssh server on port 80, i must "simulate" a
HTTP authentification.

Do you have a solution for me?

If u don't understand anything in this mail, please write me at
cdrik_trash@no-log.org

Thanks,

--
List Information: http://tech.erdelynet.com/mailman/listinfo/ssh-l/
List Archives:    http://erdelynet.com/archive/ssh-l/
To Unsubscribe: Go to http://tech.erdelynet.com/mailman/options/ssh-l#subscribers
and enter your email address at the bottom.
If you don't know your password, have it emailed to you. Then unsubscribe.