Re: can a SSH server initiate a connection?

To: debian-user@lists.debian.org
Subject: Re: can a SSH server initiate a connection?
From: Gregory Seidman <gss+debian@cs.brown.edu>
Date: Sun, 1 Aug 2004 15:17:11 -0400
Message-id: <[🔎] 20040801191711.GB31585@cs.brown.edu>
Mail-followup-to: debian-user@lists.debian.org
Reply-to: gss+debian@cs.brown.edu
In-reply-to: <[🔎] 200408012008.16928.rl2@shinyblue.net>
References: <[🔎] 200408012008.16928.rl2@shinyblue.net>

On Sun, Aug 01, 2004 at 08:08:16PM +0100, rich wrote:
} I have a (woody) box running sshd sitting behind a firewall. From
} outside the firewall, I want to be able to ssh in.
} 
} I can see that I could get around the firewall if the connection was
} initiated from within the firewall, ie. if somehow the person could
} give a command on the server which somehow connects to the would-be
} client, and then allows the client to take over as a normal ssh
} session.
} 
} any clues? ideas?

Normally, one simply allows connections through the firewall on port 22
to the ssh server. Do you have some good reason not to do that?

Another possibility, if you insist on doing things the hard way, is to
make your firewall respond to port knocking by allowing connections only
briefly. Google for more information on port knocking. This assumes that
you have a Linux box as a firewall.

Either way, the ssh server is largely oblivious to how the client is
getting to it.

} thanks,
} Rich.
--Greg

Reply to:

References:
- can a SSH server initiate a connection?
  - From: rich <rl2@shinyblue.net>

Prev by Date: can a SSH server initiate a connection?
Next by Date: Re: iptables rule for sshd
Previous by thread: can a SSH server initiate a connection?
Next by thread: Re: can a SSH server initiate a connection?
Index(es):
- Date
- Thread