On Sun, Nov 19, 2000 at 09:06:06AM -0800, Roeland Meyer wrote:
How closely have you looked at Samba sources? BTW, I've done it through SSH tunnels too. The problem is that some SAs (a fair large percentage) think that a port labeled "secure" (port 22) means that they have to take special care to make sure that it is blocked (yes, they are the recently lobotomized). So, three-quarters of the time, a VPN is not do-able and you are forced to go plain-text direct. If, in addition, you block the NetBIOS ports then you block application-level access for 80% of internet users.
So you're hypothesizing that this customer will: 1) Be behind a firewall that blocks ssh. 2) Be behind a firewall that DOESN'T block SMB. 3) Not be in a position to have that policy changed. 4) Not be violating his corporation's policies when he connects through you.