Re: site-to-site VPN with credential prompts?
tomas@tuxteam.de (HE12025-03-26):
> I was once sitting at a $(DAYJOB) where they blocked everything but
> 443 (and 80). I tunneled ssh over socat (with TLS, so that the handshake
> didn't look suspect, in case their firewall sniffed that). Bonus: I
> got to see whether they did MITM, since I made my own server and
> client certs.
If behind a BOFH firewall, ssh is usually a lot easier to tunnel to
sneak through than a VPN.
> Bigcorps are like that. It was not that the firewall department didn't
> want to talk to me. It was that they bought a "product" without really
> understanding how it works.
Must not comment. Must not comment.
Regards,
--
Nicolas George
Reply to: