> What I need, is to be able to logon to the Webserver from the Intranet,
> using userid/password on the webserver, and that has to be encrypted in
> the DMZ, as hackers easily can sniff from the DMZ (if you disagree then
> please tell me why).
Well, hopefully not "easily," since you have that firewall there, but you should treat
a DMZ as though it is hostile territory, so to speak..
> Now my question is, is it possible to use SSH and still require
> supplying userid/password to the Webserver?
Yes, and many other options are available. Try reading
http://securityportal.com/direct.cgi?/research/ssh-part1.html
----
Michael Owen
IT Security Engineer
NET-TEL Computer Systems Ltd
[EMAIL PROTECTED]
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
