From: Patrick Debois [mailto:Patrick.Debois@sos.be]
Sent: Wednesday, February 05, 2003 11:36 PM
To: 'secureshell@securityfocus.com'
Subject: Re: ssh via HTTP proxy...

On Mon, 3 Feb 2003, Raj, Ashok wrote:

> I would need to access remote system via ssh, but we have a firewall
> in-between.
>
> When I use putty from Windows that has ability to redirect via HTTP
> proxy and port 22 is handled by the proxy server.

I've used proxytunnel and corkscrew under linux. I think httptunnel also
exists. What you basically do is add a ProxyCommand in your ssh.conf
file so that when connecting to an SSH server it executes a proxy
command to tunnel the traffic.

Please note that some companies don't have a proxy but restrict acces to
port 80 only. I've worked around that setting up an apache proxy server
under port 80 and then allowing connect to port 22 under apache.

This last setup doesn't seem to work under putty when using virtual
servers on the same port as the apache.

Date: Wed, 05 Mar 2003 13:07:07 +0900
From: GOTO Masanori gotom@debian.or.jp
To: debian-security debian-security@lists.debian.org
Subject: Re: HTTP tunnel with linux server and windows client

At Mon, 3 Mar 2003 18:30:05 +0300,
Ant wrote:
> Is there is any software to bypass http proxy
>
> <Win Client> ------- <HTTP Proxy> --{Inet} -----<Some Linux Software>
>
> and win client after such proceess could work with any TCP/IP
> Services.
>
> Some kind of pptp via http $-). (1

http://sourceforge.jp/projects/stone/ stone

Description: TCP/IP packet repeater in the application layer. TCP/IP
packet repeater in the application layer. It repeats TCP and UDP
packets from inside to outside of a firewall, or from outside to inside.
Stone supports SSL. stone can encrypt/decrypt packets with OpenSSL
library. Stone can also be a tiny http proxy. POP -> APOP
conversion. With stone and a mailer that does not support APOP, you
can access to an APOP server.

Regards,
-- gotom