Firewalls: Re: CORBA and tunnelling over HHTP

Firewalls
(December 1996)

Indexed By Thread: [Previous] [Next]

Subject:	Re: CORBA and tunnelling over HHTP
From:	Justin Mason <jmason @ iona . com>
Date:	Thu, 12 Dec 1996 12:43:14 +0000
To:	Michael Richardson <mcr @ sandelman . ottawa . on . ca>
Cc:	jmason @ iona . com (Justin Mason), firewalls @ greatcircle . com
In-reply-to:	<199612120227 . VAA27229 @ amaterasu . sandelman . ottawa . on . ca>

Michael Richardson said:

>  Just build your protocol. If you decide to make it HTTP based, fine,
>but don't run it on port 80. You may want to look at SSH or SSL.

It's not that IIOP looks like HTTP; what the proposal is intending to
do, is to _disguise_ the protocol inside normal, port-80, HTTP to get
through firewalls, and decode it on the server-side using a CGI script
which forwards on the _real_ protocol data to an CORBA object.  Bad
stuff.

>  Some advice from someone who writes application layer proxies:

Thanks for the advice, it'll be handy for the proxy development.

--j.

References:

CORBA and tunnelling over HHTP
From: Michael Richardson <mcr @ sandelman . ottawa . on . ca>

Indexed By Date	Previous:	Re: New export controls to include code signing applications (fwd) From: Adam Shostack <adam @ homeport . org>
Indexed By Date	Next:	Re: Hackering, Export restrictions From: Jyri Kaljundi <jk @ stallion . ee>
Indexed By Thread	Previous:	CORBA and tunnelling over HHTP From: Michael Richardson <mcr @ sandelman . ottawa . on . ca>
Indexed By Thread	Next:	Restricted access. From: israel . serrano @ solmelia . es