Category: Security

5 July 2020

Securing SFTP?

I recently came upon a situation where there was a request to allow an SFTP connection out to the Internet for secure file transfer. My previous posts have been concerned with stopping SSH tunnels on non-standard ports but some may have viewed this as an academic exercise as most enterprises insist outbound connections are made through a proxy server. A proxy understands HTTP (including HTTPS […]

Security

8 May 2020

SSH Forwarding (Part 2)

Again nothing earth-shattering here, a simple exercise building on the previous post. What do we want to do? This time we want to build a tunnel from a Windows host to a Linux one using the ssh utility Putty and then connect back to the Windows host down the tunnel using a remote desktop program. The Lab Setup You’ll notice the employment of the same […]

Security

2 May 2020

SSH Forwarding (Part 1)

SSH Remote Forwarding It’s not news to a lot of people that SSH can be used to create tunnels to defeat simple port-based filtering devices and although I knew about it, I’d never actually tried it till I did: What do we want to do? So let’s imagine we want HostA to connect to HostB on port 80 which typically is used for http. (The […]