Solved

Ssh through an autheniticating proxy

Posted on 2000-05-05
5
302 Views
Last Modified: 2013-11-18
Hello,

I am trying to establish an Ssh connection to an external host from behind a rather restrictive proxy.  The proxy only allows port 80 and 443, and I must authenticate (username & password) before it lets me through.

I think I solved the port problem, I reconfigured the remote host's SSHD to listen on 443.

The problem is (I think): how to I authenticate through the proxy?

I am using Tera Term Pro (TTP) with the Ssh extension.  TTP does not seem to offer an facility for dealing with this barrier.

Does anyone know how to make TTP work, or know of some other free software I can use?  Whatever the solution, it needs to have Ssh forwarding support.

Thanks in advance,
CubeDweller
0
Comment
Question by:cubedweller
  • 2
  • 2
5 Comments
 
LVL 40

Expert Comment

by:jlevie
Comment Utility
I don't think you'll be able to do that because the proxy is going to require that you authenticate using http protocol. Also, once authenticated the proxy will only be sending and expecting SSL encrypted http protocol data. In other words, you can't tunnel some other protocol stream (like ssh) through a proxy. If it were a simple firewall that restricted traffic to those ports you could tunnel ssh trough on 443.
0
 

Author Comment

by:cubedweller
Comment Utility
Can I tunnel the entire session through HTTP packets?  I know I have seen tools to do this, but I can't remember where or how to implement them.

Thanks.
0
 
LVL 40

Expert Comment

by:jlevie
Comment Utility
I know that tunnels like that do exist for some things, I don't know if there's one for SSH. I've done a bit of web searching, but all I see related to this is people talking about adding plug-ins to proxy servers to allow ssh tunneling. I don't see anything that suggests that there's an ssh client/server that can directly tunnel through an unmodified proxy server. Maybe you'll have better luck in a web search.
0
 
LVL 1

Accepted Solution

by:
rtheriot earned 150 total points
Comment Utility
This kind of works around you problem,
but there is an implementation of ssh, written i believe in java, called mindterm.  

http://www.mindbright.se/mindterm/

you could literally load up a page with the mindterm applet running on the machine you want to connect to, and tell mindterm to connect to the local host.

hth

rtheriot
0
 

Author Comment

by:cubedweller
Comment Utility
RTheriot,

Thanks for the answer.  I installed the software, and it is very cool, but unfortunately doesn't work in my environment.  I'm really not sure why I can't get it to work, but I am told that soon our proxy will no longer require authentication.  This will hopefully render the entire issue moot.

Thanks anyway,
CubeDweller
0

Featured Post

Why You Should Analyze Threat Actor TTPs

After years of analyzing threat actor behavior, it’s become clear that at any given time there are specific tactics, techniques, and procedures (TTPs) that are particularly prevalent. By analyzing and understanding these TTPs, you can dramatically enhance your security program.

Join & Write a Comment

I have seen several blogs and forum entries elsewhere state that because NTFS volumes do not support linux ownership or permissions, they cannot be used for anonymous ftp upload through the vsftpd program.   IT can be done and here's how to get i…
Before we dive into the marketing strategies involved with creating an effective homepage, it’s crucial that EE members know what a homepage is. In essence, a homepage is the introductory, or default page, of a website that typically highlights the …
The purpose of this video is to demonstrate how to set up the WordPress backend so that each page automatically generates a Mailchimp signup form in the sidebar. This will be demonstrated using a Windows 8 PC. Tools Used are Photoshop, Awesome…
Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, Just open a new email message.  In the To field, type your recipient's fax number @efaxsend.com. You can even send a secure international fax — just include t…

772 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

10 Experts available now in Live!

Get 1:1 Help Now