RE: Question on how to set up client browser -> DMZ machine -> po rt f orwarded to port 80 on LAN machine?

From: Ball, Duncan (duncan.ball@eds.com)
Date: 04/01/03

  • Next message: Max Gregis: "Re: problems setting up SSH without passwords"
    From: "Ball, Duncan" <duncan.ball@eds.com>
    To: "'Sriram S. - CTD, Chennai.'" <sriram_s@ctd.hcltech.com>, "Martinez, Michael - CSREES/ISTM" <MMARTINEZ@intranet.reeusda.gov>, secureshell@securityfocus.com
    Date: Tue, 1 Apr 2003 17:58:54 +1000 
    
    

    How are you expecting the sshd to establish authentication? sshd doesn't
    talk HTML/HTTP. Surely what you're looking for is a proxy/cache like squid
    to perform authentication?

    Duncan Ball
    Adelaide, Saaarf Australia

    -----Original Message-----
    From: Sriram S. - CTD, Chennai. [mailto:sriram_s@ctd.hcltech.com]
    Sent: Monday, 31 March 2003 11:17 PM
    To: Martinez, Michael - CSREES/ISTM; secureshell@securityfocus.com
    Subject: RE: Question on how to set up client browser -> DMZ machine ->
    po rt f orwarded to port 80 on LAN machine?
    Importance: High

    You could just edit the /etc/services file of your remote server machine and
    change the port number for sshd to 80 (comment the existing service name for
    port 80) and restart the sshd daemon and try it out. Could help you out
    better.

    Thanks
    Sriram S

    -----Original Message-----
    From: Martinez, Michael - CSREES/ISTM
    [mailto:MMARTINEZ@intranet.reeusda.gov]
    Sent: Friday, March 28, 2003 7:40 PM
    To: secureshell@securityfocus.com
    Subject: Question on how to set up client browser -> DMZ machine -> port
    f orwarded to port 80 on LAN machine?

    Question on how to set up the following:

    I want to be able to have someone on the Internet point their browser to
    port 80 on my Linux box that sits in the DMZ. This Linux box does not run a
    web server. But I want sshd to listen to port 80 ... Authenticate the user
    .... And then once the user is authenticated, set up connection from the
    client browser to a web server behind the firewall.

    How to achieve this?

    Quick responses please.

    Martinez, Michael
    CSREES/ISTM/USDA


  • Next message: Max Gregis: "Re: problems setting up SSH without passwords"

    Relevant Pages

    • login & dtlogin query
      ... I have a query regarding login and dtlogin. ... Question on how to set up client browser -> DMZ machine -> ... po rt f orwarded to port 80 on LAN machine? ... How are you expecting the sshd to establish authentication? ...
      (SSH)
    • Re: Running Sshd as non-root
      ... > I was trying to make my sshd more secure by running it on non-root user. ... If you do not trust the portion of sshd running as root then here are some ... * sshd cannot bind to port 22/tcp or any other port 1024 or below. ... other password authentication mechanisms may also fail. ...
      (Security-Basics)
    • RE: SSH with OpenSSH and Putty - Please Help!
      ... It looks like your config file doesn't state exactly which file needs to be ... you may need to truss sshd or run sshd in debug foreground mode ... Then test and see if your key-based authentication works. ... Event Log: No supported authentications offered. ...
      (SSH)
    • Re: BEFVP41 -2003 SBS Help Please
      ... Couple of things to keep in mind about exposed ports, VPN, and security ... + 1723 is authentication, it doesn't pass the data stream. ... 1723 is an authentication port, if someone authenticated, they get in. ...
      (microsoft.public.windows.server.sbs)
    • Re: sshd
      ... # RSA and DSA keys for protocol v2 are created by /etc/init.d/sshd if they ... # if you wish to restrict the interfaces sshd listens on for a multi homed host. ... # Banner to be printed before authentication starts. ... # Note that the client may also be sending keep alive messages to the server. ...
      (comp.unix.solaris)