But his question concerns wrapping SSH in SSL. It's common for SSL to contain legitimate HTTP traffic. So, if a firewall is supposed to let HTTP through, would SSH be able to get through by donning the SSL sheep mask and by walking like sheep on port 80? Or would the smelly black-furred legs sticking out the bottom give him away?
Most firewalls aren't profiling what is moving across the port to see if the traffic is valid. This would be done by an IDS system. Moving across 80 with SSL may be denied by some IDS systems as being suspicious. Moving across 443 with SSL would be quite normal. SSH uses SSL, so it would be silly to wrap it in SSL in most cases.
-- "The other teams could make trouble for us if they win." --Yogi Bera
-- [email protected] http://www.kernel-panic.org/cgi-bin/mailman/listinfo/kplug-list
