On Wed, 14 Mar 2001, Satish Ramaswamy wrote:
> sshd, listens on port no. 22 and when somebody connects using ssh,
> sshd forks and establishes a connection at the highest_available_port.
no, the client is still connected at 22/TCP. just like SMTP, Telnet, HTTP,
etc ...
the client's OUTBOUND port is set, by default, to be below 1024, but this
can be turned off in the config using UsePrivilidgedPort (and a non-suid
root client ssh).
as such firewalling is easy.
____________________________
jose nazario [EMAIL PROTECTED]
PGP: 89 B0 81 DA 5B FD 7E 00 99 C3 B2 CD 48 A0 07 80
PGP key ID 0xFD37F4E5 (pgp.mit.edu)
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
