OT: Dealing with a hosting company with it's head up it's rear end

Steve O'Hara-Smith steve at sohara.org
Fri Aug 14 05:57:11 UTC 2020


On Fri, 14 Aug 2020 00:43:12 +0200
Polytropon <freebsd at edvax.de> wrote:

> On Thu, 13 Aug 2020 16:12:18 -0400, Aryeh Friedman wrote:
> > They have a whacko firewall config that will eat 443/decrypt it/forward
> > it on as plain http via a proxy on the firewall
> 
> So what you're saying is: They don't care about security,
> in fact, they're making things worse, by being the "man in
> the middle"?! Wow...

	It is a very common corporate firewall technique, and appropriate
in that context. But for a hosting company it seems odd.

> "Boohoohoo! SSH is so insecure, we must not allow that!"

	Again many corporate firewalls don't allow ssh out (or in directly)
because tunnelling bypasses the firewalls. And again it seems odd for a
hosting company.

-- 
Steve O'Hara-Smith <steve at sohara.org>


More information about the freebsd-questions mailing list