RE: [Full-Disclosure] SSH vs. TLS

From: Ng, Kenneth (US) (kenng_at_kpmg.com)
Date: 06/29/04

  • Next message: Valdis.Kletnieks_at_vt.edu: "Re: [Full-Disclosure] SSH vs. TLS" 
    To: "'dante@forethought.net'" <dante@forethought.net>, full-disclosure@lists.netsys.com
Date: Tue, 29 Jun 2004 12:30:12 -0500

    Today this is a straw man arguement. You can tunnel practically anything
    over any protocol. I've seen NFS tunneled over EMAIL. Yes, when you type
    "ls" the NFS request packet gets UUENCODED into an email, sent over
    sendmail, fed into a decoder and routed back into NFS, and then back. A few
    seconds later and you get a directory listing. And frankly, I'm not sure
    you want to know what besides http really goes over port 80.

    -----Original Message-----
    From: full-disclosure-admin@lists.netsys.com
    [mailto:full-disclosure-admin@lists.netsys.com]On Behalf Of
    dante@forethought.net
    Sent: Tuesday, June 29, 2004 11:20 AM
    To: full-disclosure@lists.netsys.com
    Subject: [Full-Disclosure] SSH vs. TLS

    Has anyone had experience with TLS Telnet?
    [edit]

    - SSH allows tunneling other protocols, circumventing firewall policies.

    [edit]

    *****************************************************************************
    The information in this email is confidential and may be legally privileged.
    It is intended solely for the addressee. Access to this email by anyone else
    is unauthorized.

    If you are not the intended recipient, any disclosure, copying, distribution
    or any action taken or omitted to be taken in reliance on it, is prohibited
    and may be unlawful. When addressed to our clients any opinions or advice
    contained in this email are subject to the terms and conditions expressed in
    the governing KPMG client engagement letter.
    *****************************************************************************

    _______________________________________________
    Full-Disclosure - We believe in it.
    Charter: http://lists.netsys.com/full-disclosure-charter.html

  • Next message: Valdis.Kletnieks_at_vt.edu: "Re: [Full-Disclosure] SSH vs. TLS"

    Relevant Pages

    • Re: NAT is not a mechanism for securing a network.. but.. HELP!
      ... each packet is modified to change the IP addresses ... and ports but uses the same protocol. ... build a "tunnel", where UDP packets are actually sent using the ... Notice that each layer can have multiple /different/ protocols. ...
      (comp.security.firewalls)
    • RE: Tunnel any protocol over any protocol?
      ... service requests retransmission of any lost or corrupted packets. ... Tunnel any protocol over any protocol? ... InfoSec Institute ...
      (Security-Basics)
    • Re: [9fans] Do we have a catalog of 9P servers?
      ... what keeps me working on Plan 9 related technologies in a paid ... NFS by any other name? ... show in various places in the protocol. ... 9P Client (in Linux kernel including virtio, fd, & RDMA transports) ...
      (comp.os.plan9)
    • Re: Tunnel any protocol over any protocol?
      ... Is it possible to Tunnel any Protocol over any other ... http tunnel, https tunnel, ftp tunnel, ssh tunnel etc. ... Totally hands-on course with evening Capture The Flag exercises, Certified Ethical Hacker and Certified Penetration Tester exams, taught by an expert with years of real pen testing experience. ...
      (Security-Basics)
    • Re: Tunnel any protocol over any protocol?
      ... Tunnel any protocol over any protocol? ... +1000, Chip Panarchy wrote: ... materials and an expert instructor means you pass the exam. ...
      (Security-Basics)