Linux Today: Linux News On Internet Time.
Search Linux Today
Linux News Sections: Blog - Developer - High Performance - Infrastructure - IT Management - Security - Storage -
Linux Today Navigation
LT Home
Preferences
Contribute
Link to Us
Search
Linux Jobs

Linux Today
Enterprise Linux Today
Apache Today
JustLinux.com
Linux Planet
PHPBuilder
All Linux Devices
Technology Jobs

JustTechJobs.com

LinuxToday Newsletters
Server Daily
IT Management Daily
Subscribe News
Subscribe PR
Subscribe Security

internet.com
Internet News
Small Business

Advertise
Newsletters
Tech Jobs
E-mail Offers

 






Current Newswire:

Linux Top 5: Linux's New Fellow

RebeccaBlackOS - First Live CD Running Wayland Display Server

The Linux powered LAN Gaming House

5 Best Android Apps For Reddit Lovers

SECURITY: Flash Player Sandbox Comes to Firefox

The Future of Kubuntu

SECURITY: Symantec should not be afraid of 'open' source code

Linux 3.3 rc3

60 Fantastic Free Android Apps

Ready for Another Linux Tablet? Meet the Rugged Trimble Yuma



Applications Management Engineer Sr (NYC)
Next Step Systems
US-NY-New York

Justtechjobs.com Post A Job | Post A Resume
:Hacking Linux Exposed: SSH Bouncing--How to Get Through Firewalls Easily
Hacking Linux Exposed: SSH Bouncing--How to Get Through Firewalls Easily
Sep 1, 2004, 07 :00 UTC (8 Talkback[s]) (16404 reads)
(Other stories by Brian Hatch)

"Have you ever been in the situation that you wanted to SSH directly to a machine, but there has been some device in between that prevents it? Say you have a Linux firewall that protects your DMZ, and you have a boatload of machines behind it that you want to manage. There are all sorts of methods that are used to do so, and all have some level of annoyance.

"The first and most simple solution is to SSH to the machine in the way, say the firewall. The firewall administrator can just set up one or more non-privileged accounts for users who need access to the machines behind it. This is a pain, of course--if you want to upload a file, you need to upload it to the firewall via sftp/scp, and then upload it to the target server. What a pain. And security-wise, you now have all these random firewall accounts running amok, probably not your favourite situation..."

Complete Story

Related Stories:
CrossNodes: The Serial Console: A Front Door Worth Leaving Open(Aug 20, 2004)
NewsForge: A Critique of Port Knocking(Aug 11, 2004)
SitePoint: Use Webmin for Linux Administration, Parts 1 and 2(Jun 09, 2004)
Linux Exposed: Kerberos Security(Sep 23, 2003)


Index Mode   |   Flat Mode   |   Thread Mode   |   Thread Flat  
  Talkback(s) Name  and Date
Shame on you for posting something that ...   Oh, please   
Donna Larson
Sep 1, 2004, 08:46:56  
Oh, shut up! Security through obscurity ...   Re: Oh, please   
alison
Sep 1, 2004, 12:17:04  
Ummm... if you read the article you' ...   Re: Oh, please   
Ben
Sep 1, 2004, 12:23:32  
Given that you would need (for this to w ...   Re: Oh, please   
Tom W.
Sep 1, 2004, 13:16:28  
> Shame on you for posting something tha ...   Re: Oh, please   
Evan Dodd
Sep 1, 2004, 14:08:35  
Oh no... This will no doubt be used by l ...   fueling the FUD   
robbob
Sep 1, 2004, 14:23:31  
The replies to this article pretty well ...   Ignorance Considered Harmful   
DanielB
Sep 1, 2004, 16:38:47  
Hm... what is the advantage of using suc ...   Why not -L and -R?   
Ike To
Sep 2, 2004, 14:08:40  
  Home | Search Talkbacks | Customize View    Top of Page  



Enter your comments below:

* Your Name:

* Your Email Address:

* Subject:

CC: [will also send this talkback to an E-Mail address]

* Comments:

Tags allowed:<I>,<B> and <U>. See our talkback-policy for more about talkback content.

Fields marked with * are required!

..............................




All times are recorded in UTC.
Linux is a trademark of Linus Torvalds.
Powered by Linux, Apache and PHP