From owner-freebsd-questions@FreeBSD.ORG Thu Jul 12 18:01:16 2012 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 747CF1065672 for ; Thu, 12 Jul 2012 18:01:16 +0000 (UTC) (envelope-from kayasaman@gmail.com) Received: from mail-vb0-f54.google.com (mail-vb0-f54.google.com [209.85.212.54]) by mx1.freebsd.org (Postfix) with ESMTP id 2830E8FC08 for ; Thu, 12 Jul 2012 18:01:16 +0000 (UTC) Received: by vbmv11 with SMTP id v11so2154392vbm.13 for ; Thu, 12 Jul 2012 11:01:15 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type; bh=temtbfnbB68ZT5LFNhk24GfDLdfygSDwxnBOGy42BHI=; b=k7227yJjGGNMoRDkpjLerjLnd5LIA3Z7MQGITb8HDqc5kig4BfrzjROoMl5BfgLWRo SzwXP3QVidbtcXdskLkB6rCtifqG41x1Au0+k2rcH0TcHaYrU420GHOHDaWciGbRM3BA BdjUyzYahCtUxo4JyNyMonXjYxVQm9x4gYLYXYRxUBCDvs8zmK+9VxIVJCIuPDG20xow MnGCeQpCCix1MKmDhCi0v9cUBChZoEbfupENpnXatk19IXCFfD2qrxoFxX6+h1YM+gL5 B+pfp5TPQxuppO1tszeVxODm0QQ5jCnFwXyCvq4B36NsXhUh2v9XD9pD5kSnT601tWCo 40WA== MIME-Version: 1.0 Received: by 10.52.95.171 with SMTP id dl11mr21539236vdb.120.1342116075371; Thu, 12 Jul 2012 11:01:15 -0700 (PDT) Received: by 10.58.154.169 with HTTP; Thu, 12 Jul 2012 11:01:15 -0700 (PDT) In-Reply-To: <20120712174139.GA10822@external.screwed.box> References: <44k3y83nib.fsf@be-well.ilk.org> <20120712174139.GA10822@external.screwed.box> Date: Thu, 12 Jul 2012 19:01:15 +0100 Message-ID: From: Kaya Saman To: Peter Vereshagin Content-Type: text/plain; charset=ISO-8859-1 Cc: freebsd-questions@freebsd.org Subject: Re: Is there a way to run FreeBSD ports through port 80? X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 12 Jul 2012 18:01:16 -0000 On Thu, Jul 12, 2012 at 6:41 PM, Peter Vereshagin wrote: > Hello. > > 2012/07/12 13:19:56 -0400 Lowell Gilbert => To Kaya Saman : > LG> URLs as well as FTP. For ones that aren't, (and assuming the rather > LG> silly security policies won't allow for an external web-based FTP proxy) > LG> you may need to bring them in by offline media. > > I believe there should be the way of using the passive ftp (and any other > protocol) via the HTTP CONNECT method to the ftp (or any other port needed for > other protocol/app) port and then handling the both control and data > connections through the consequent copmmands and data exhange. > > As far as I remember this can be done at least via the http://delegate.org > software, certainly available in the ports collection. > > Kaya, if your http proxy handles HTTP CONNECT to the port 21/ftp this can be > the workaround for you about the freebsd ports requiring ftp download ability. > > Most surprise for me is why no one is interested about what kind of a danger > the ftp protocol can ever be? i. e. skype is much more vicious in comparison to > ftp and s much harder to be restricted by a packet filter if even possoible. > > -- > Peter Vereshagin (http://vereshagin.org) pgp: A0E26627 > _______________________________________________ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to "freebsd-questions-unsubscribe@freebsd.org" Thanks Peter for the advise. Our system is totally locked down with hardly any ports open on our NAT, only the necessary ones. I'm not sure if the Proxy would support the HTTP CONNECT as it's an appliance which my superior has control over. I will check it out however and see if that method is best, however CVSup would be the best way for us and I'm already looking at this: http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/cvsup.html which should be enough to get a demo up and running. Regards, Kaya