Kai Ponte wrote:
On Sunday 12 October 2008 06:13:02 am Randall R Schulz wrote:
On Saturday 11 October 2008 21:45, John Andersen wrote:
...
In 8 years of doing that, I never had a single unexplained print job show up on the printer. While that's all technically valid, many corporate networks are very tightly regulated and opening a outgoing firewall port without restricting it to a particular IP is probably going to be harder than opening it to a specific one, if they can be persuaded at all.
Yes, our security folks are anal - as they should be - about opening ports and whatnot.
I just thought of something, however.
I had planned to open a proxy to my wife's computer so I could connect to it from work for support. (She uses it to work from home.)
I wonder if I couldn't print to that computer via the proxy...
/me runs off to search how to do this.
That might work, But you are avoiding the obvious. Your network people can be as anal as they want, but unless they are willing to block ALL outgoing ports and prevent web access all together there is simply not an issue here. All web connections start on an arbitrary port (usually above 1024) and go to port 80. If they shut that down nobody gets on line. Many protocols require subsequent connections to an arbitrary hi port negotiated by the first connection to a known port. If that shut that down weird application failures happen all over the place. The upshot it its very difficult to block outgoing connections on arbitrary ports and still do anything useful on the web. So most companies block only block OUTGOING ports that are known threats (such as outgoing 25, maybe 21 and 22), but can't realistically block EVERYTHING. If you can browse the web from work you have no problem. You can run cups on 631 (its normal port, which is not likely blocked, and at the same time any arbitrary high port you choose). Or port 80, or port 443 or any other port you don't run a service on at home. -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org For additional commands, e-mail: opensuse+help@opensuse.org