Re: If this doesn't exist it should! SSH over SSL
James McDonald wrote: ISA Server checks not only what port but what protocol is being used to connect to external services so shifting a ssh terminal or similar to an open port such as 443 will fail because ISA server only wants to talk https on 443. Actually Let me rephrase the above because it's completely wrong. I tried shutting down apache / https and moving sshd to 443 and from work connecting through the proxy using putty configured to use a http proxy it works very well So in short if you have a msproxy and with strict nothing but known ports being let out then you can still get a terminal to your linux box only you will need to shut https down and shift sshd to 443. ___ Linux-users mailing list [EMAIL PROTECTED] Unsubscribe/Suspend/Etc -> http://www.linux-sxs.org/mailman/listinfo/linux-users
RE: If this doesn't exist it should! SSH over SSL
ISA Server checks not only what port but what protocol is being used to connect to external services so shifting a ssh terminal or similar to an open port such as 443 will fail because ISA server only wants to talk https on 443. So what I am talking about is having a webserver application that talks a version of https and you would have a submit button in your browser to send shell command and they would go over the wire as completely safe html/https and then be translated by the webserver application as what they are ... shell commands. -- James McDonald Systems Engineer Singleton NSW Australia ___ Linux-users mailing list [EMAIL PROTECTED] Unsubscribe/Suspend/Etc -> http://www.linux-sxs.org/mailman/listinfo/linux-users
Re: If this doesn't exist it should! SSH over SSL
On Wed, 10 Sep 2003 11:41:32 -0600 Myles Green <[EMAIL PROTECTED]> wrote: > This was seen on freshmeat.net yesterday (tuesday): > > http://www.ericdaugherty.com/dev/soht/ Wow. I need something like that. We have a client in England behind an anal retentive firewall. They are offering a long distance modem call that I would have to pay. Maybe this will let me in to admin a system we have set up. Thank you for the pointer. Now I need to figure out which is client and which is server. Maybe each will be both. -- ++···+ · Roger Oberholtzer · E-mail: [EMAIL PROTECTED]· · OPQ Systems AB · WWW: http://www.opq.se/ · · Erik Dahlbergsgatan 41-43 ·Phone: Int + 46 8 314223 · · 115 34 Stockholm · Mobile: Int + 46 733 621657 · · Sweden · Fax: Int + 46 8 302602 · ++···+ ___ Linux-users mailing list [EMAIL PROTECTED] Unsubscribe/Suspend/Etc -> http://www.linux-sxs.org/mailman/listinfo/linux-users
RE: If this doesn't exist it should! SSH over SSL
I am not entirely sure I understand what you are asking. The only thing I can think of is VNC using SSL. Thee is also an advertised secure vnc viewer at http://3sp.com/products/sshtools/sshtools.php, but this may be the same as the mindterm application you don't wish to use. Regards, Wil McGilvery Manager Lynch Digital Media Inc 416-744-7949 416-716-3964 (cell) 1-866-314-4678 416-744-0406 FAX www.LynchDigital.com Regards, Wil McGilvery Manager Lynch Digital Media Inc 416-744-7949 416-716-3964 (cell) 1-866-314-4678 416-744-0406 FAX www.LynchDigital.com -Original Message- From: James McDonald [mailto:[EMAIL PROTECTED] Sent: Wednesday, September 10, 2003 9:55 AM To: [EMAIL PROTECTED] Roger Oberholtzer wrote: >>If the following was true regarding a network >> >>myPC <--> ISA W2K Proxy <--> Router/Firewall <-Internet-> Linux/https >> >>And I wanted to create a connection over https to my apache linux server >>and then run a command line session to run shell commands/mutt/pebrot etc >>on my box Linux Box >> >>Does anyone know of any software that will do it? >> >> > >OpenVPN? I see that it now supports Windows. Then, make a virtual private >network between myPC and Linux/https. VPN provides a general solution. >Setting a similar thing up is on my To Do list. > > My point is that I need it to be SSL so that I can traverse the proxy without it being on another port other than 443. VPN etc use ports other than 443 and if you try to run on port 443 using another protocol.the proxy reports "Protocol is not allowed on this port" I don't have administrative control of the Proxy/Firewall and I know that http/ssl and http both are open but only by way of the proxy, ssh fails but I need the encryption of ssl. I am trying to make a remote telnet style terminal of a web browser not in the mindterm java applet style but so that only key strokes and command out put are sent to and from the webserver via https and then executed on the webserver in a text only type of transfer. -- James McDonald (Would you like fries with that MCSE?) Singleton Australia 61+ (0)2 65712401 61+ 0428 320 219 23:45:00 up 1 day, 3:59, 5 users, load average: 0.03, 0.26, 0.64 Linux 2.4.22 #1 Mon Sep 1 20:03:11 EST 2003 athlon i386 GNU/Linux ___ Linux-users mailing list [EMAIL PROTECTED] Unsubscribe/Suspend/Etc -> http://www.linux-sxs.org/mailman/listinfo/linux-users ___ Linux-users mailing list [EMAIL PROTECTED] Unsubscribe/Suspend/Etc -> http://www.linux-sxs.org/mailman/listinfo/linux-users
Re: If this doesn't exist it should! SSH over SSL
On Wed, 10 Sep 2003 23:54:35 +1000, James McDonald <[EMAIL PROTECTED]> wrote: > Roger Oberholtzer wrote: > > >>If the following was true regarding a network > >> > >>myPC <--> ISA W2K Proxy <--> Router/Firewall <-Internet-> > >Linux/https> > >>And I wanted to create a connection over https to my apache linux > >server>and then run a command line session to run shell > >commands/mutt/pebrot etc>on my box Linux Box > >> > >>Does anyone know of any software that will do it? > >> > >> > > > >OpenVPN? I see that it now supports Windows. Then, make a virtual > >private network between myPC and Linux/https. VPN provides a general > >solution. Setting a similar thing up is on my To Do list. > > > > > My point is that I need it to be SSL so that I can traverse the proxy > without it being on another port other than 443. VPN etc use ports > other than 443 and if you try to run on port 443 using another > protocol.the proxy reports "Protocol is > not allowed on this port" > > I don't have administrative control of the Proxy/Firewall and I know > that http/ssl and http both are open but only by way of the proxy, ssh > > fails but I need the encryption of ssl. > > I am trying to make a remote telnet style terminal of a web browser > not in the mindterm java applet style but so that only key strokes and > > command out put are sent to and from the webserver via https and then > executed on the webserver in a text only type of transfer. This was seen on freshmeat.net yesterday (tuesday): http://www.ericdaugherty.com/dev/soht/ SOHT (Socket over HTTP Tunneling) allows you to tunnel socket connections through an HTTP proxy. Restrictive firewalls often prohibit all outgoing trafic except for HTTP. This application allows you to tunnel socket connections over the HTTP protocol. This application consists of a server that serves as a proxy and a client which tunnels a socket connection over an HTTP connection to the server. The current release is written in Java, and a .NET client is under development. HTH Myles -- Myles Green <[EMAIL PROTECTED]> Slackware-9.1pre + IceWM-1.2.12 + Sylpheed-0.9.4 -- Alberta Mirror Linux-SxS.org http://linux-sxs.org/ ___ Linux-users mailing list [EMAIL PROTECTED] Unsubscribe/Suspend/Etc -> http://www.linux-sxs.org/mailman/listinfo/linux-users
Re: If this doesn't exist it should! SSH over SSL
Roger Oberholtzer wrote: If the following was true regarding a network myPC <--> ISA W2K Proxy <--> Router/Firewall <-Internet-> Linux/https And I wanted to create a connection over https to my apache linux server and then run a command line session to run shell commands/mutt/pebrot etc on my box Linux Box Does anyone know of any software that will do it? OpenVPN? I see that it now supports Windows. Then, make a virtual private network between myPC and Linux/https. VPN provides a general solution. Setting a similar thing up is on my To Do list. My point is that I need it to be SSL so that I can traverse the proxy without it being on another port other than 443. VPN etc use ports other than 443 and if you try to run on port 443 using another protocol.the proxy reports "Protocol is not allowed on this port" I don't have administrative control of the Proxy/Firewall and I know that http/ssl and http both are open but only by way of the proxy, ssh fails but I need the encryption of ssl. I am trying to make a remote telnet style terminal of a web browser not in the mindterm java applet style but so that only key strokes and command out put are sent to and from the webserver via https and then executed on the webserver in a text only type of transfer. -- James McDonald (Would you like fries with that MCSE?) Singleton Australia 61+ (0)2 65712401 61+ 0428 320 219 23:45:00 up 1 day, 3:59, 5 users, load average: 0.03, 0.26, 0.64 Linux 2.4.22 #1 Mon Sep 1 20:03:11 EST 2003 athlon i386 GNU/Linux ___ Linux-users mailing list [EMAIL PROTECTED] Unsubscribe/Suspend/Etc -> http://www.linux-sxs.org/mailman/listinfo/linux-users
Re: If this doesn't exist it should! SSH over SSL
On Wed, 10 Sep 2003 16:22:40 +1000 (EST) "James McDonald" <[EMAIL PROTECTED]> wrote: > If the following was true regarding a network > > myPC <--> ISA W2K Proxy <--> Router/Firewall <-Internet-> Linux/https > > And I wanted to create a connection over https to my apache linux server > and then run a command line session to run shell commands/mutt/pebrot etc > on my box Linux Box > > Does anyone know of any software that will do it? OpenVPN? I see that it now supports Windows. Then, make a virtual private network between myPC and Linux/https. VPN provides a general solution. Setting a similar thing up is on my To Do list. -- ++···+ · Roger Oberholtzer · E-mail: [EMAIL PROTECTED]· · OPQ Systems AB · WWW: http://www.opq.se/ · · Erik Dahlbergsgatan 41-43 ·Phone: Int + 46 8 314223 · · 115 34 Stockholm · Mobile: Int + 46 733 621657 · · Sweden · Fax: Int + 46 8 302602 · ++···+ ___ Linux-users mailing list [EMAIL PROTECTED] Unsubscribe/Suspend/Etc -> http://www.linux-sxs.org/mailman/listinfo/linux-users