Detecting SSH tunnels on a linux firewall

Matthew Walker rorith at kydance.net
Wed Jan 10 10:24:54 MST 2007


On Wed, January 10, 2007 10:15 am, Kyle Robinson wrote:
>
> Force the HTTP traffic into a transparent proxy.
>

Won't work. I can use Putty to create an SSH tunnel to a server I control
running Squid, and direct my local browser to use the localhost port as
proxy. This routes the entire request through the SSH tunnel to the remote
Squid server, which then handles the request from there.

There is no way to stop this short of forbidding SSH connections to
external servers.

-- 
Matthew Walker
Kydance Hosting & Consulting
LAMP Specialist



More information about the PLUG mailing list