Re: Blocking Yahoo Messenger With Firewall??

WOW!

Why are you insulting me?

I have done nothing to insult you.

I have asked some rather simple, straight forward questions that you
still have not answered.

AS for me, I "get it" (your words, not mine) just fine.

I have not seen anything in this thread that asked what you were doing
at your company. There was a rather general question asked in the
beginning that you replied to.

All I have done is ask you to provide information about the response
that you made.

I do not really care about your company and what you do or do not do
there. I am interested in the technical aspects of how you would know
what someone using SSH is doing.

I have enumerated the conditions associated with SSH use for this
conversation twice and see no need to repeat that.

I am still waiting for the answer to my questions.

Jim

Moe Trin wrote:

> On 4 Dec 2005, in the Usenet newsgroup alt.computer.security, in
> article <dmvbbe015um@xxxxxxxxxxxxxxxxxx>, Jim Seavey wrote:
>
> > I am very disappointed in your replies.
>
> Then fire me.
>
> > You have yet to tell me how you would know what someone was doing if
> > they had an SSH connection running.
>
> You seem determined to ignore some rather strong hints. Does your job
> REQUIRE or even authorize you to be using SSH (or indeed, any
> encrypted traffic) to this or that address? Yes? Then "this" may
> happen. No? Then "something else" may happen. If your employer
> doesn't care, then good for you. That "something else" might range
> from a casual question at lunch, on up to film crews installing
> cameras to watch your keystrokes and display, installation of (or
> activation of pre-installed) key loggers, or any level in between. In
> case you haven't figured it out, this is highly dependent on what
> your employer has deemed appropriate. What may or may not happen at
> my company is totally irrelevant to you.
>
> > I am not trying to give you a hard time, but I am interested in
> > knowing how you could know what someone is doing within the SSH
> > data stream, as I stated above.
>
> You really don't get it. The computer you are using at work does not
> belong to you any more than the network. Your employer can (provided
> they have warned you in advance in a written policy) install any
> software they want, and can take disciplinary action if you try to
> alter it, or if you try to install extra software. They also could
> install stuff without prior warning of any kind - but that's outside
> the scope.
>
> > I am not aware of anyone who has been able to "see" what is going on
> > inside an SSH data stream.
>
> The normal technique is to "see" it before it enters the stream, or
> after it exits.
>
> > Having someone dismissed from their job is not a trivial issue and
> > in so doing the "data" that you would provide would have to be
> > beyond reproach.
>
> Discuss it with your lawyer. They don't have to show the contents of
> the data stream. If necessary, they might show film of you logging in
> to a non-business site - or show that you are running an application
> that was not installed by the company.
>
> Old guy



--
http://www.norseaodyssey.com
See the Contact Us page

NorSea Odyssey
Around The World by BMW Motorcycle
http://www.norseaodyssey.com
"Yeah, I have a hair stylist. His name's helmet."
"If Bill Gates had a nickel for every time Windows crashed....Oh, wait,
he does!"
.

Relevant Pages

  • Re: PRNGD is not seeded
    ... The ssh is some version: ... Prngd was installed via custom ... I'm wondering if I should install OSS646, ... rsync does not require ssh. ...
    (comp.unix.sco.misc)
  • Re: PRNGD is not seeded
    ... The ssh is some version: ... Prngd was installed via custom ... I'm wondering if I should install OSS646, ... rsync does not require ssh. ...
    (comp.unix.sco.misc)
  • Re: Is Windows 98 SE More Secure Than OS X?
    ... So you don't see any importance in the fact that the hackers had SSH ... copy of OS X and install it clean on a Mac. ... what is it with these car analogies? ... Shouldn't Windows be *better than* OSX at security? ...
    (comp.sys.mac.advocacy)
  • Re: [Full-Disclosure] Psexec on *NIX
    ... Have you considered creating one dedicated windows machine with SSHd ... and psexec installed and using it as a jumpbox? ... Why would I install ... CC> and run an ssh daemon just to use it to run another program, ...
    (Full-Disclosure)
  • Re: Blocking Yahoo Messenger With Firewall??
    ... dependent on what your employer has deemed appropriate. ... >how you could know what someone is doing within the SSH data stream, ... if you try to install extra software. ...
    (alt.computer.security)
Quantcast