RE: [cobalt-security] Securing Admin Pages

[Jeffrey April <jeff@xxxxxxxxxxxx>]

With SecureCRT do the following:

edit the properties for the ssh session profile that you have created to
connect to your server.  Next click on port forwarding and click the add
button.  This will open a new window.  Assign a name for the connection
(i use admin pages), a local port (81) and the remote port (81).  Finally,
click ok, and the port forwarding/ssh tunnel is setup.

To use the ssh tunnel, connect to the server with this profile that you
just modified, then, using a browser, connect to http://localhost:81/ and
you should get your admin pages.

This type of setup is great to get access to the admin pages even if you
have port 81 blocked with your firewall as I do.  I can ssh to the box,
and then forward port 81 to the server to get access to the admin pages.

Let me know if you have any more questions, and I will ping you offline.

Jeff

On Fri, 22 Feb 2002, Steven Young wrote:

> Apologies for my last post which was a reply to this original post with no
> additional message, my finger got trigger happy...
>
> > A quick way to secure the admin page is to use an ssh tunnel.  With
> > SecureCRT, and other ssh client for Windoze, you can connect to port 81
> > via an ssh tunnel.  This will encrypt all of the traffic to the admin
> > pages.
>
> Could you elaborate on this for me? I have heard of using an ssh tunnel and
> I have SecureCRT installed on my Windoze machine, but have no idea of how to
> do this. Currently I connect to my RaQ on port 22 for command line
> operations, but I do not understand how SecureCRT can be used to securely
> tunnel my admin GUI pages. Am I completely off track here?
>
> Thanks,
> Steven
>
> _______________________________________________
> cobalt-security mailing list
> cobalt-security@xxxxxxxxxxxxxxx
> http://list.cobalt.com/mailman/listinfo/cobalt-security
>