Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Focus-Linux
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: Reverse SSH tunelling

from [Andres Riancho] Network Security [Permanent Link]
Subject: Re: Reverse SSH tunelling
Date: Fri, 27 Aug 2004 20:32:15 -0300 
Raistlin ,

    I have another idea thats more simple than yours , you should contact
your firewall manager and ask him if there is a way to authenticate against
the firewall (i know that Nokia Firewall-1 and Cisco Pix allow that) , once
you authenticated with the firewall you have special rules to access
services that are running on your servers. This services would be only
reachable by an authenticated user.

Andres Riancho

----- Original Message ----- 
From: "Raistlin Majere" <raistlin@majere.net>
To: <focus-linux@securityfocus.com>
Sent: Wednesday, August 25, 2004 11:50 PM
Subject: Reverse SSH tunelling



Hi All,

I need some advice .. I have a situation where about fifty servers will
be located in fifty sites that cannot allow services to be hosted. These
servers will be in private network space behind firewalls. I can use
them to 'scp' files out to a common home base server, but sometimes I
need to access a command line console on these servers. I am thinking of
having a hourly cron job ssh out to my home base server and leaving that
tunnel open  so that I can access that console, but am looking for the
specific way of doing this. Security os pf the utmost concern, so I need
some sort of encrypted tunnel, hence the thought of ssh, but I don't
know how to do this 'reverse' tunnel... I was also thinking of a 'free
swan' vpn tunnel ..


Thanks

Raist
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: Reverse SSH tunelling, Kyle Maxwell
Next by Date:  Re: Reverse SSH tunelling, Graeme Hinchliffe
Previous by Thread:  Re: Reverse SSH tunelling, Kyle Maxwell
Next by Thread:  Re: Reverse SSH tunelling, Graeme Hinchliffe
Indexes:  [Date] [Thread] [Top] [All Lists]