Martin Forssen wrote: > But as Damien pointed out in this case they are just deluding themselves > if they tink they stop file-transfers by disallowing ssh while still > allowing telnet. As I read the post, they don't expect to stop file transfers, only hidden ones -- they want to be able to monitor all of the traffic across their firewall (even if that means attackers can easily do so as well). They can snoop telnet, ftp et al; they can't snoop s[cp|sh] from host-to-host. -- Michael Jinks, IB // Technical Entity // Saecos Corporation Opinions expressed above are my own, and not those of my employer.
- Block scp, allow ssh? H. Wade Minter
- Re: Block scp, allow ssh? Michael Jinks
- Re: Block scp, allow ssh? Damien Miller
- Re: Block scp, allow ssh? (slightly off topic) Martin Forssen
- Re: Block scp, allow ssh? (slightly off topi... Michael R. Jinks
- Re: Block scp, allow ssh? (slightly off ... Greg A. Woods
- Re: Block scp, allow ssh? (now way ... Michael R. Jinks
- Re: Block scp, allow ssh? (now ... Greg A. Woods
- Re: Block scp, allow ssh? (slightly off ... Trevor Antczak
- Re: Block scp, allow ssh? Michael Erdely
- Re: Block scp, allow ssh? Michael R. Jinks
- RE: Block scp, allow ssh? Rob Tillman
- Re: Block scp, allow ssh? Trevor Antczak
- Re: Block scp, allow ssh? Andrew Fullford
