ssh over http
Atom Powers
atom.powers at gmail.com
Wed Nov 29 10:56:19 PST 2006
On 11/29/06, Tom Judge <tom at tomjudge.com> wrote:
> Atom Powers wrote:
> > On 11/27/06, Ansar Mohammed <ansarm at gmail.com> wrote:
> >> Hello All,
> >> Is there any ssh over http implementation available for freebsd?
> >
> > That doesn't even make sense. SSH is a transport layer protocol, HTTP
> > is an application layer protocol.
> >
>
> Both HTTP and SSH are application level transports, however both can be
> used to tunnel TCP connections. Therefore it is possible to use ssh
> over http. The windows putty client can use http proxies to make
> outbound connections as long as your http proxy is configured to allow
> CONNECT requests to port 22. If you using squid for example with a
> defaultish config you will need to update your proxy server configuration.
>
SSH is often paired with an application, a shell, but that doesn't
make it an application layer protocol. SSH establishes and manages a
transport layer connection between the client and server, over which
you can tunnel most other transport layer protocols.
This is very similar to the way SSL/HTTP are being used. SSL and TLS
are transport layer protocols that usually use the application layer
protocol HTTP. And like SSH, SSL/TLS can be used to tunnel other
transport layer protocols.
So what we are really talking about here is not "SSH over HTTP" but
"SSH through a HTTPS vpn/proxy", which doesn't use HTTP at all once
the session is established.
Nobody tunnels though HTTP, they use SSL/TLS.
--
--
Perfection is just a word I use occasionally with mustard.
--Atom Powers--
More information about the freebsd-questions
mailing list