Mailinglist Archive: opensuse (2088 mails)
| < Previous | Next > |
Re: [opensuse] ssh from behind a corporate firewall
- From: Amedee Van Gasse <amedee@xxxxxxxxx>
- Date: Tue, 03 Feb 2009 20:24:57 +0100
- Message-id: <49889A09.1000308@xxxxxxxxx>
James Knott schreef:
If my customer doesn't allow me to use the tools I need for the contract
they are paying me to do, bad luck for them. They will still be invoiced.
Anyway I will follow every rule that the customer *gives* me in writing,
but I'm not going to look up their corporate security that is hidden
somewhere deep on their intranet. You know, those documents that
everybody *should* have read but nobody knows that they exist.
--
Amedee
--
To unsubscribe, e-mail: opensuse+unsubscribe@xxxxxxxxxxxx
For additional commands, e-mail: opensuse+help@xxxxxxxxxxxx
Amedee Van Gasse wrote:
James Knott schreef:Regardless of what can technically be done, there's still corporate
Amedee Van Gasse wrote:If you can connect to the web, you can tunnel over http or https.
James Knott schreef:I was speaking in a general sense. I have no problem using SSH or VPN
Patrick Shanahan wrote:
I assume that there is some kind of firewall? And that it blocks portAND, it's trivial to ssh into your home box and access an email clientAssuming the corporate network & security will permit.
there.
22? Are they using a mandatory proxy?
I may be able to help you, if you give me more details. Are they using
ISA or Squid?
to connect from work to my home network. However, there are many places
where such "unauthorized" use is prohibited or blocked. As an example,
the public library in my city has free WiFi access for library card
holders. It works fine for accessing the web or library catalog, but
they block both SSH and OpenVPN, so I cannot connect to my home network
from the library.
If you can ping to any random host on the web, then you can use icmptx.
If you can make dns queries, then you can use nstx.
security policy to worry about. If you have an employer that bans such
activity, will you do it? Also, many companies have "locked down"
computers, where users cannot add any unauthorized software. They are
all too often stuck with Outlook.
If my customer doesn't allow me to use the tools I need for the contract
they are paying me to do, bad luck for them. They will still be invoiced.
Anyway I will follow every rule that the customer *gives* me in writing,
but I'm not going to look up their corporate security that is hidden
somewhere deep on their intranet. You know, those documents that
everybody *should* have read but nobody knows that they exist.
--
Amedee
--
To unsubscribe, e-mail: opensuse+unsubscribe@xxxxxxxxxxxx
For additional commands, e-mail: opensuse+help@xxxxxxxxxxxx
| < Previous | Next > |