Slightly ironic that SSH has features like reverse port forwarding and the built... | Hacker News

Hacker News new | past | comments | ask | show | jobs | submit

login

bashinator on Feb 22, 2013 | parent | context | favorite | on: NBC.com hacked, serving up Citadel malware

Slightly ironic that SSH has features like reverse port forwarding and the built-in SOCKS proxy that allow easy circumvention of other network security schemes.

rdl on Feb 22, 2013 [–]

And doing the x509 fake-CA MITM type bullshit is harder with SSH than with SSL. (I've never actually seen an ssh proxy deployed in the wild; I've seen "you must log in via a bastion host on which we log/analyze/filter everything" used instead.)

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact