Re: Gateway Login

To: Kenneth Pronovici <pronovic@ieee.org>
Cc: Jason <jason@efone.com>, debian-security@lists.debian.org
Subject: Re: Gateway Login
From: Javier Fernández-Sanguino Peña <jfs@computer.org>
Date: Thu, 18 Oct 2001 04:07:25 +0200
Message-id: <20011018040725.A7600@dat.etsit.upm.es>
In-reply-to: <Pine.LNX.4.21.0110171726001.660-100000@www.skyjammer.com>
References: <0110180818090J.01780@triffid.drage.org> <Pine.LNX.4.21.0110171726001.660-100000@www.skyjammer.com>

On Wed, Oct 17, 2001 at 05:33:06PM -0500, Kenneth Pronovici wrote:
> > Indeed, this gets you to one internal machine, but this is better than loggin 
> > into your firewall isn't it? From your internal machine you can then get to 
> > any other box you need to.
> 
> Agreed, I can make it work this way if I need to... what I'm trying to emulate 
> is a corporate gateway that I've logged in through in the past.  I would be
> nice to be able to generalize and say "these internal machines may be logged
> into via the firewall" somehow, which is what that corporate gateway allowed
> me to do, i.e.
> 
>    ftp gateway
>    username: user@internal.machine
> 
	This seems to be a Gauntlet firewall of sorts. You could try to
download the TIS toolkit and use the telnet proxy for this case (sorry,
it's not opensource).
	I have taken a look at the gatelogin source code and seems to be
pretty simple to change in order to use ssh instead of rlogin. Have you
tried it?

	Javi

PS: Did I say I would love to see NAI take Gauntlet and, instead of
selling the firewall technology to the best bidder, make it open-source?

Reply to:

Follow-Ups:
- Re: Gateway Login
  - From: Kenneth Pronovici <pronovic@skyjammer.com>

References:
- Re: Gateway Login
  - From: Jason <jason@efone.com>
- Re: Gateway Login
  - From: Kenneth Pronovici <pronovic@skyjammer.com>

Prev by Date: Re: Gateway Login
Next by Date: Re: Gateway Login
Previous by thread: Re: Gateway Login
Next by thread: Re: Gateway Login
Index(es):
- Date
- Thread