wok
annotate sslh/description.txt @ rev 20595
xfi, xfw, cryptkeeper: dirty hack
| author |
Pascal Bellard <pascal.bellard@slitaz.org> |
| date |
Sun Dec 16 10:41:06 2018 +0100 (2018-12-16) |
| parents |
|
| children |
|
| rev |
line source |
|
pascal@19628
|
1 `sslh` accepts connections on specified ports, and forwards
|
|
pascal@19628
|
2 them further based on tests performed on the first data
|
|
pascal@19628
|
3 packet sent by the remote client.
|
|
pascal@19628
|
4
|
|
pascal@19628
|
5 Probes for HTTP, SSL, SSH, OpenVPN, tinc, XMPP are
|
|
pascal@19628
|
6 implemented, and any other protocol that can be tested using
|
|
pascal@19628
|
7 a regular expression, can be recognised. A typical use case
|
|
pascal@19628
|
8 is to allow serving several services on port 443 (e.g. to
|
|
pascal@19628
|
9 connect to SSH from inside a corporate firewall, which
|
|
pascal@19628
|
10 almost never block port 443) while still serving HTTPS on
|
|
pascal@19628
|
11 that port.
|
|
pascal@19628
|
12
|
|
pascal@19628
|
13 Hence `sslh` acts as a protocol demultiplexer, or a
|
|
pascal@19628
|
14 switchboard. Its name comes from its original function to
|
|
pascal@19628
|
15 serve SSH and HTTPS on the same port.
|