What is Digg?Sponsored by newegg
Ready. Set. Shop view!
newegg.com - Newegg.com Black Friday Sale starting 11/25 3PM PST. No Lines, No Crowds, Click and Save.
43 Comments
- VinceNoir, on 10/11/2007, -2/+17Welcome to what us *nix heads have been doing for over a decade! And I mean that in a very friendly and happy way. Seriously! Welcome and I hope you enjoy the stay.
- Derfus, on 10/11/2007, -6/+20translation: view porn at work/school
- sirber, on 10/11/2007, -0/+12Tor is much slower than SSH tunnel.
- merr, on 10/11/2007, -1/+11Maybe I'm missing something, but wouldn't it make more sense to be configuring your proxy in the Network Preferences pane instead of inside Firefox?
- inactive, on 10/11/2007, -0/+91. repeat tired, lame slashdot joke for the millionth time
2 ...
3. get dugg down - Murdats, on 10/11/2007, -3/+11ssh is common, it will work on any OS
- inactive, on 10/11/2007, -1/+7maybe the same reasons the fcc tells americans what they can and cannot watch on television, and is trying to regulate internet radio out of existence: power, control, and profit.
- KibibyteBrain, on 10/11/2007, -0/+5TOR shows you are trying to obtain an internet connection. SSH is just ???. You could be sending/receiving a file via SCP, setting up apache on some Linux box somewhere, compiling some code, or pretty much anything. There is nothing to imply that you are using it for a point-to-point HTTP tunnel. So its harder for Bill the IT manager to bring himself to ban all SSH traffic, but pretty easy for him to ban TOR, either in policy or at the firewall level.
- marnaq, on 10/11/2007, -0/+5@eschreib
they banned youtube in thailand because some satire clip about the king of thailand.
reliable source: http://news.bbc.co.uk/1/hi/world/asia-pacific/6528303.stm - tokyomonster, on 10/11/2007, -0/+5@laelfrog, you have a very valid point--however if you install "foxyproxy" into firefox, you can force dns requests to be routed through your socks proxy, or in this case, ssh tunnel.
If you don't want to download an extension, go to about:config , and search for network.proxy.socks_remote_dns and set that value to true, instead of false. That will do the same thing.
And for those skeptics, I've sniffed my sessions before and after, and can vouch for the dns traffic being routed as well. - KibibyteBrain, on 10/11/2007, -0/+5@kevincw01 You can use SSH tunneling on all major operating systems, Linux, BSDs, Mac, and yes, after installing some stuff, even Windows. So pretty much anyone willing to figure out the instructions for his OS can do this.
- MytE, on 10/11/2007, -2/+7Why even mention TOR? That wasn't the point of this guys article. His point was to stop people snooping what he was doing at work etc. Not trying to be anonymous. Also go and read TOR's site they even disclaim about not delivering strong anonymity anyway. Also lets not forget TOR is SLOOOOOOWWWWW. The guy writing the article cearly had the right idea when he suggested connecting to a dedicated server which of course gives you maximum bandwidth.
- milezteg, on 10/11/2007, -0/+3Tor is a good choice but it is blocked in Thailand, China etc, along with most other proxy enabling sites. I am in Bangkok and the above works here to access any blocked content (YouTube).
- eschreib, on 10/11/2007, -0/+3Just curious, any thoughts on 'why' the Thai government would want to ban 'YouTube'?
- technique, on 10/11/2007, -1/+3...and you're new here, aren't ya?
- KageKonjou, on 10/11/2007, -4/+6This will work on Linux, too. No need for OS X.
- ipodman715, on 10/11/2007, -0/+1No, actually I've been on here since Nov '05.
But there just seem to be more than usual... - GodisGood, on 10/11/2007, -2/+3It's news to people who don't know it... Just 'cause we've heard this before doesn't mean it's not news. :-)
- stephdau, on 10/11/2007, -0/+1Or you could install sshkeychain and let it do all that for you. :)
- felderado, on 10/11/2007, -0/+1yeah it can
- Blakeeb, on 10/11/2007, -0/+1If you're Terminal-phobic, I highly recommend this tool: http://www.macupdate.com/info.php/id/10128
It does what the article suggests, but with a nice user interface. Select "dynamic" for tunnel type and it will create a SOCKS proxy on localhost for your apps to tunnel through. It also has automatic reconnect, great for laptops which go to sleep. - slapthemonkey, on 10/11/2007, -0/+1Thank you Chris, your information makes the article complete for me.
- laelfrog, on 10/11/2007, -1/+2http://jstrassburg.blogspot.com/2006/01/howto-tunneling-http-over-ssh-with-dd.html
See the comment made by Sniper Fox labeled HUGE REALLY BAD SECURITY PROBLEM!!!. - usrlocalbin, on 10/11/2007, -0/+1Best part about controlling the network and Internet connection at your job is that no one ever knows what you are doing online :)
If you're damn good at it, no one can ever find out either. - TeatimeGrommit, on 10/11/2007, -0/+1Being on FreeBSD has really been one of the key benefits of switching to Mac for me. (If it weren't for the FreeBSD foundation, I'd be typing this on an Ubuntu machine right now). I was rather sick of hearing about great utilities that hadn't been ported to Windows yet, or which really only worked well under Unix.
- inactive, on 10/11/2007, -0/+1cool i set it up, seems to be working
will it use this on the FTP pages you open in firefox? - SteveMax, on 10/11/2007, -1/+1In that case your web traffic wouldn't be encrypted if you use Firefox (it doesn't honour the system settings).
- raamdev, on 10/11/2007, -4/+4This will work on Windows, too. No need for OS X. Windows users can use Putty.
How is this SSH Tunneling stuff new to anyone? If you know what SSH is, you should know the power of its tunneling capabilities.
This has to be the 5th article about SSH Tunneling I've seen in the past two months that has made it to the front page of Digg. Enough with the dupes and enough with trying to popularize blogs. - kethraal, on 10/11/2007, -1/+1Tor isn't blocked there.... the popular download sites for it are.
Tor itself can connect through pretty much any firewall, provided that firewall allows _some_ form of outbound connection. - xertys, on 10/11/2007, -3/+3Tor encrypts traffic before it leaves your machine and it is encrypted up until it exits the Tor network, so yes, it does prevent snooping at work.
- laelfrog, on 10/11/2007, -2/+2Woa there... Don't move too quickly...
While SSH Tunneling might encrypt and hide your TCP/IP traffic, I've read that DNS/Name resolution is still done on the local machine. You could edit your hosts file as a secure means of name resolution.
So basically your school/work will know what sites you went to, but won't see the actual traffic. - sandrewww, on 10/11/2007, -1/+1*if* you're expecting to quit soon, then yeah go right ahead and do this
if you want to *keep* your job however, companies generally don't appreciate you circumventing their 'security' procedures. so if your IT department has half a clue, you really don't want to be proxying any noticeable amount of traffic to your computer.
see http://blogs.pcworld.com/tipsandtweaks/archives/002229.html for a mention of a guy getting fired for using anonymizer at work. bypassing your company's 'security' mechanisms does give a them a good excuse to let you go if they need one -- obfuscating your network traffic does look sketchy - felderado, on 10/11/2007, -1/+1WARNING!!!
DNS resolution is still done with your regular connection and not through the encrypted proxy! You could still be caught for going to the sites! They just cant snoop on every little move you do.
To become totally invisible in Firefox set network.proxy.socks_remote_dns to TRUE!!!!!!
Then they'll never know you were surfing at all :D - laelfrog, on 10/11/2007, -1/+1@tokyomonster - Thank you, that was exactly what I was looking for!
its nice that Firefox has the network.proxy.socks_remote_dns configuration setting. Its a good point to remember nonetheless. - SWMpls, on 10/11/2007, -1/+0Exactly. The anomaly will call attention to you as well. It's not a free pass.
(sez the guy reading digg at work) - Dougman82, on 10/11/2007, -1/+0Somebody correct me if I'm wrong, but I do see a problem here...
It's true that the connection from your client computer to the server would be secure. However, the HTTP requests are still being done by that server, which is on your company's network (or wherever you may be). That means that the admin can see that traffic to some porn site or whatever, and think to himself, "Self, where is this traffic coming from?" Then he sees a long-standing SSH connection from that server to your IP address. I don't think it would take too much to put two and two together here... - ipodman715, on 10/11/2007, -2/+1What's with all the Apple stories?
- usernameistaken, on 10/11/2007, -5/+3Then it wouldn't be able to go under Apple news. And all the apple fanbois would have nothing to digg.
- koregaonpark, on 10/11/2007, -6/+4Interesting. But why not just use TOR? It's a lot easier to configure and use, that's for sure. All you need is the installer and the Torbutton Firefox extension.
http://tor.eff.org/
https://addons.mozilla.org/en-US/firefox/addon/2275 - MaximegalonInfo, on 10/11/2007, -6/+2Exactly, makes you wonder why this is considered "news". I remember when you had to learn how computers worked.
Related item, can we get more "news" on this hot new "Photoshop" program? /sarcasm - GodisGood, on 10/11/2007, -6/+1No, because then all your traffic (printing, file sharing, etc...) would be proxied, not just your web surfing.
- kevincw01, on 10/11/2007, -11/+4@kibibytebrain: the article says "Advanced OSX". I use ssh tunneling on my pc every day...
- kevincw01, on 10/11/2007, -16/+4step 1: work for an employer crazy enough to use all apple desktops
step 2:have desire to work somewhere else even though your employer spent buku bucks on apple desktops and probably pays you a whole lot more than average
step 3: ...
step 4: profit
© Digg Inc. 2009
— Content created and posted by Digg users is