On Wed, 30 Oct 2002 10:25:31 +0200 Yedidyah Bar-David <[EMAIL PROTECTED]> wrote: > Sometimes you'd rather that over nothing. I know at least two places > (and guess there are thousands) that do not permit any outgoing traffic > except http over their proxy (so that running sshd on port 80 won't > work either). If you had a way to run such a http<->ssh proxy, even > a slow and non-responsive one, you would use it when you had to.
What you describe just proves how clueless many corporations are. First they overload any concievable service on port 80 (what happend to the other 16K tcp/udp ports?) than they find that they need to make content filtering so only "good" http goes in. This is completely braindamaged, as various web services schemes demonstrate that with appropriate methodology, you can overload http with everything you want. What will be the next level in their content filtering strategies? Searching for "bad patterns"? (reminds me of the stupid AntiVirus products I used in my old DOS days...). Of course people could start encoding their protocols with steganographic methods over http... should be interesting to see corporates try to block this. ---------------------------------------------------------------- Oron Peled Voice/Fax: +972-4-8228492 [EMAIL PROTECTED] http://www.actcom.co.il/~oron 3Com only purchased rights to the numbers '3' '5' and '9', Intel owns '4', '8', '6', and '2'. '0' and '1' are still in the public domain ;-) -Donald Becker ================================================================= To unsubscribe, send mail to [EMAIL PROTECTED] with the word "unsubscribe" in the message body, e.g., run the command echo unsubscribe | mail [EMAIL PROTECTED]
