On 4/28/05, [EMAIL PROTECTED] <[EMAIL PROTECTED]> wrote: > > That jsut got me to thinking about those places that block outgoing 22, > > but leave 80 open. If you took your SSHd and put it on port 80, and SSL > > wrapped it, would the network gurus be able to see that it is not HTTP > > traffic at all, but indeed SSH inside SSL? Traffic analysis might give > > it away, but I mean just looking at the packets. Hmm. > > web server wouldn't be able to handle ssh stream. Whether firewall > accepts ssh thru 80 depends on sophistication of firewall. > But yes, ipchains firewall can let ssh thru port 80 if sshd is > listening there i think.
But his question concerns wrapping SSH in SSL. It's common for SSL to contain legitimate HTTP traffic. So, if a firewall is supposed to let HTTP through, would SSH be able to get through by donning the SSL sheep mask and by walking like sheep on port 80? Or would the smelly black-furred legs sticking out the bottom give him away? Also, you dropped an attribution on that email, i.e. Who are you quoting? -todd -- [email protected] http://www.kernel-panic.org/cgi-bin/mailman/listinfo/kplug-list
