[ale] Clientless VPN
Chris Fowler
cfowler at outpostsentinel.com
Thu Aug 26 19:15:25 EDT 2010
On Thu, 2010-08-26 at 19:05 -0400, Jim Kinney wrote:
> don't (and WON'T) use it as it's a feeble excuse for a vpn. It
> basically uses a browser session to establish an SSL connection to the
> home office. That usually loads a java app back to the kiosk client.
> Sometimes these are VNC things and sometimes they are little more than
> file managers. Most require some form of user authentication
> (password) to activate the client code sent back to the browser.
>
> As the article states, the basic insecurity of the system is the
> client itself. Since you don't know what kind of code has been
> installed (keystroke loggers in particular) the "protection" is only
> as good as the system you are using.
So these do not provide ip connectivity? Maybe something similar in
process as ssh port redirection?
More information about the Ale
mailing list