From owner-freebsd-questions@FreeBSD.ORG Fri Jul 13 18:42:37 2012 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52]) by hub.freebsd.org (Postfix) with ESMTP id 470811065670 for ; Fri, 13 Jul 2012 18:42:37 +0000 (UTC) (envelope-from freebsd-questions@m.gmane.org) Received: from plane.gmane.org (plane.gmane.org [80.91.229.3]) by mx1.freebsd.org (Postfix) with ESMTP id 00A7B8FC1A for ; Fri, 13 Jul 2012 18:42:37 +0000 (UTC) Received: from list by plane.gmane.org with local (Exim 4.69) (envelope-from ) id 1Spkoz-0008SY-BM for freebsd-questions@freebsd.org; Fri, 13 Jul 2012 20:42:33 +0200 Received: from np-19-75.prenet.pl ([np-19-75.prenet.pl]) by main.gmane.org with esmtp (Gmexim 0.1 (Debian)) id 1AlnuQ-0007hv-00 for ; Fri, 13 Jul 2012 20:42:33 +0200 Received: from jb.1234abcd by np-19-75.prenet.pl with local (Gmexim 0.1 (Debian)) id 1AlnuQ-0007hv-00 for ; Fri, 13 Jul 2012 20:42:33 +0200 X-Injected-Via-Gmane: http://gmane.org/ To: freebsd-questions@freebsd.org From: jb Date: Fri, 13 Jul 2012 18:42:18 +0000 (UTC) Lines: 55 Message-ID: References: Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Complaints-To: usenet@dough.gmane.org X-Gmane-NNTP-Posting-Host: sea.gmane.org User-Agent: Loom/3.14 (http://gmane.org/) X-Loom-IP: 79.139.19.75 (Mozilla/5.0 (X11; Linux i686; rv:13.0) Gecko/20100101 Firefox/13.0.1) Subject: Re: Is there a way to run FreeBSD ports through port 80? X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 13 Jul 2012 18:42:37 -0000 Kaya Saman gmail.com> writes: > > Hi, > > I am trying to introduce FreeBSD into my office and it's been looked > at with quite a bit of enthusiasm however, what makes it look bad is > our companies 'security' policy to block FTP. > > At present they are running a whole bunch of CentOS based boxes and > VM's which of course can be run through port 80 when using YUM. > > How does one get round this issue as my superiors are telling me that > opening up FTP is a security risk and therefor don't want to proceed? > > I would like to use ports specifically and not the pkg_add tool to get > software. > > Can anyone sugget anything? > > Regards, > > Kaya Hi, > ... > We simply have it [ed: FTP] banned on a Juniper firewall. So http is being > proxied by a web appliance but that's it... nothing else. > ... > Yep. It's up to your proxy server whether it's going to handle FTP or only > HTTP (and/or HTTPS). > ... > We have an 'appliance' based proxy and as company policy FTP should be > restricted, ie. not active on this as it's a security risk. Regardless of whether your corporate proxy can not handle FTP by its limited capability or by company's policy, there is a solution called "proxy chaining". http://www.freeproxy.ru/en/free_proxy/faq/index.htm How to bypass corporate proxy? What is HTTP proxy server? ... HTTP Proxy Chaining What is proxy chaining (proxy to proxy)? FTP through a proxy server: problems and solutions jb