digg

Facebook Connect Join Digg About

SSH tricks

polishlinux.org Stop fishing!

Who dugg this? Made popular Jul 21, 2007

Digg DudeWhat is Digg?

Digg is a place for people to discover and share content from anywhere on the web. Digg surfaces the best stuff as submitted and voted on by the community. Take the Tour to learn more.

70 Comments

show profanity settings
expand all
  • cs02rm0, on 10/11/2007, -0/+29This is SSH basics, not tricks. SSH can do some pretty cool things, like bouncing your internet connection out through the company firewall, not just standard features.
  • Gogogo111, on 10/11/2007, -0/+16Thats why he said we. He must help run that site.
  • Sparkster185, on 10/11/2007, -2/+14Due to the growing user base of Linux, lots of people are just starting out and need to know the basics. Not every has been a 1337 Linux user since 1999.
  • c130commnav, on 10/11/2007, -1/+9nothing that isn't in the man file really, not sure what so bad about reading em. Because this is like the millionth one I have seen on digg I am here by creating YAST (yet another ssh tutorial)
  • JC4P, on 10/11/2007, -4/+12Yes, lets all jump to paranoid conclusions!
  • Robyr, on 10/11/2007, -21/+29Dude, WTF. This server is *****. It has been on the FP for 4 minutes, no comments, and 30 diggs = dead webserver? Jesus get a real host.
  • michuk, on 10/11/2007, -1/+7Here is the second part of this article with some more complex stuff concerning bypassing firewalls with tunnels: http://polishlinux.org/apps/ssh-tunneling-to-bypass-corporate-firewalls/

    By the way, the original article was published over one year ago :)
  • michuk, on 10/11/2007, -0/+5Actually I have an RSS feed for dugg news from polishlinux: http://digg.com/rss_search?search=polishlinux&area=all&type=url&age=7§ion=news
    Yep, digg allows these kinds of nice stuff :P
    So that more or less I know if there's something going on here.
  • adrianmonk, on 10/11/2007, -0/+5The second article does have some more interesting stuff, but they left out a couple of tricks that I've developed over the years:

    (1) Use "-C" to enable compression. They already mentioned this, but what they didn't mention is why: it will often actually save you CPU time! It seems paradoxical that enabling something slow like compression would do that, but there's an explanation: compression uses CPU power, but not as much CPU power as encryption. So the compression can reduce the size of the input to the encryption algorithm, and it can run faster.

    (2) This really goes in the category of tricks. Do a "ssh -L 5555:localhost:5555 user@host". Then when logged in on the ssh session (or from anywhere else on the machine), do a "telnet localhost 5555". Boom, you've just created a "tcp bomb". sshd will receive a connection on 5555 and respond by creating a tunnel to 5555. That will require sshd to create another tunnel, and so on, and so on, until you either reach the internal limit on number of ssh channels in the session, or you run out or TCP ports(!) or you run out of memory. It's fun to do this and then type "netstat -an | wc -l".

    (3) Getting back to something useful, just like you can type ~ Z Return to background the ssh client and ~. Return to disconnect the ssh session, in later versions of openssh, you can type ~ # Return to see the current set of tunnels. You can even do ~ C Return to get a simple command line where you can establish new tunnels configs in the existing session (like using -L and -R on the command line, but after the session has already started instead of just at the beginning). That last will save you from having to do another ssh session to add a new port.
  • bigkm, on 10/11/2007, -1/+6The best thing i ever learnt about ssh was the ~/.ssh/config file it makes life so simple
  • michuk, on 10/11/2007, -0/+5Calling me Ubuntu fanboy basing it on this article is a bit strange. The only Ubuntu accent in the article is the screenshot where I connect from an Ubuntu box to a Slackware box. Yep, real fanboyism :)
    Following your thinking, I could call you a Windows fanboy just because you bash Ubuntu and Mac products. Pretty stupid isn't it?
  • rabidsnail, on 10/11/2007, -2/+7http://polishlinux.org.nyud.net:8090/apps/ssh-tricks/#
  • michuk, on 10/11/2007, -2/+6You just need to be patient -- the server is up, it's just not allowing everyone due to max clients setting (low RAM for digg effect)
  • Otto, on 10/11/2007, -0/+4Worked for me. However, here's a working mirror in case it goes down:
    http://dotcache.com/http://polishlinux.org/apps/ssh-tricks/#
  • michuk, on 10/11/2007, -0/+3Perpahs problems with DNS? The site has been up for the whole time.
  • aaronm67, on 10/11/2007, -1/+4Google cache works.
    http://72.14.209.104/search?q=cache:http://polishlinux.org/apps/ssh-tricks/%23&hl=en&lr=&c2coff=1&sa=G&strip=1
  • bkemper, on 10/11/2007, -0/+3My guess is that he has the server e-mail him or something whenever his server traffic hits a certain threshold (and then he looks to see where its coming from), or perhaps when traffic coming from digg.com reaches a certain level. Note that his name on Digg (michuk) is the same as the author short name on that Web site (if you click on "michuk" there, you can also see that it matches the full name of the author, "Borys Musielak"). So it would seem he has the skill level to set up something to alert him when his server starts slowing down under the load of being dugg.
  • orvtech, on 10/11/2007, -2/+5how about some tricks involving mod_cache, mod_proxy and mod_deflate to optimize your apache ?
  • defect, on 10/11/2007, -0/+2I use my 3G-phone to surf the web a lot, which can be quite slow. I found that if i tunnel my HTTP-traffic through a compressed SSH-connection i gain around 10 kbyte/s (from 40kbyte/s to 50kbyte/s) which is quite nice :)
  • sg4u, on 05/31/2009, -8/+10Hopefully they can find some "tricks" to optimize their web server a bit more...
  • PedleZelnip, on 10/11/2007, -1/+3Actually there are a lot of users who don't use Unix/Linux and still can use SSH (I'm one of them). Setting up passwordless logins is a useful thing to know how to do, I use it all the time when I have to ssh into my University's servers.
  • xptweakerntn, on 10/11/2007, -3/+5What are you all talking about? After it's been on the fp for 52 minutes, I can access it fine. I mean, the page loads in about 1.2 seconds. Maybe you all just have "crappy ISP's".
  • colonels1020, on 10/11/2007, -0/+2Buried as accurate.
  • prockcore, on 10/11/2007, -0/+2Strange that it's called SSH tricks, and he talks about scp, and doesn't even mention the simplest scp trick.

    You can copy a file from one server to another server without a middleman. scp user1@server1.com:file user2@server2.com:
  • SjRaptor, on 10/11/2007, -0/+2I dont know if that's even a trick. Isn't that a very commonly used feature? come to think of it, none of the "tricks" mentioned in the article I would consider tricks.

    Here's a trick for you: use ssh -T user@host
    This will make you "invisible" to the `w' command

    This trick is also mentioned in Phrack issue 64 article 4 (A brief history of the Underground scene)
  • zlam, on 10/11/2007, -0/+1Soon Apple will invent this and call it iSSH and it'll be hyped all over the place. It clearly will rule.
  • xtlosx, on 10/11/2007, -0/+1not a bad article, but port forwarding to your home squid server and bypassing the company proxy server is by far my favorite...... It's helped me get around plenty of situations.....
  • inactive, on 10/11/2007, -0/+1In reference to mounting via /etc/fstab, instead consider autofs. It will deal with this much better.
  • wikityler, on 10/11/2007, -0/+1need a bury for crappy grammar use
  • michuk, on 10/11/2007, -0/+1You can comment now. I turned comments off so that they do not kill the server even more.
    The server is really pretty much optimized. It's only too crowded (hosts some 10 websites, including some popular ones). That's why it goes slowish on diggs.
  • theendlessnow, on 10/11/2007, -1/+2Article was pretty basic... but some really don't even know those things... so ok I guess... not sure why it was dugg up though.
  • wesw02, on 10/11/2007, -0/+1My thoughts exactly. When I see "tricks" I expect to see something impressive that hasn't been in the man file for the last 5 years.
  • flashingcurser, on 10/11/2007, -0/+1dugg for having a ubuntu machine ssh'ing into a slackware box on a RPM distro site. Covers all the bases, slack, debian, and redhat.
  • kh99, on 10/11/2007, -1/+1Modded down because you asked for it.
  • nufa, on 10/11/2007, -1/+1Agreed
  • coldhead, on 03/05/2008, -0/+0http://fishtecccourse.net
  • PedleZelnip, on 10/11/2007, -1/+1Hmm, too bad the site is down....
  • joebaloney, on 10/11/2007, -0/+0Here's a trick I'd like to know. If I log in as user x with X11 forwarding enabled, and I su to another user, how do I get X11 to continue to tunnel? (Simply setting the DISPLAY variable doesn't do it)
  • abandonedhero, on 10/11/2007, -1/+1or you could just optimize apache and not piss people off.

    And also - I'm not able to comment. Your author and e-mail fields don't show up. I was going to tell you that sshd is really the daemon on Ubuntu
  • scotte, on 10/11/2007, -1/+1Good god... When did writing an article with a few basics available in the man pages as well as a thousand other web pages become 'tricks'?
  • maxdamage, on 10/11/2007, -1/+1Nothing about port forwarding? This is barely a taste of what ssh can do.
  • kevmaster, on 10/10/2007, -0/+0SSH can also be integrated into PHP scripts:
    http://digg.com/programming/PHP_SSH
  • iDiggIt42, on 10/11/2007, -1/+1Dugg down 'cause this isn't Slashdot.
  • coldhead, on 03/05/2008, -0/+0http://fishtectgame.com
  • Gioware, on 10/11/2007, -1/+1That was pretty dumb!
  • inactive, on 10/11/2007, -2/+2another ubuntu fanboy posting about something that been around since the early 90s .. i think ubuntu users are worse then mac and iphone users... maybe maddox should rip on ubuntu next.
  • xptweakerntn, on 10/11/2007, -3/+2Ok Znuff, I guess I'll have to explain the process to you. People submit stories, if other people like the stories, they Digg them. Eventually, with enough Diggs, it hits the frontpage. That is how stuff like this gets to the frontpage. Any questions?
    /supremacy (*nix user)
  • DiggerRich, on 10/11/2007, -2/+1Anything on that site saying that Linux sucks ass?
  • inactive, on 10/11/2007, -8/+7N00b. buried.
  • ssboisen, on 10/11/2007, -1/+0http://duggmirror.com/linux_unix/SSH_tricks_2/
  • Fetching more discussions...
    Show 51 - 66 of 66 discussions

  • Add a Comment

    Login or register to comment!
    Or, sign-in super fast with your Facebook account ...

© Digg Inc. 2009 — Content created and posted by Digg users is dedicated to the public domain | Terms of Use Updated | Privacy Policy
DIGG, DIGG IT, DUGG, DIGG THIS, Digg graphics, logos, designs, page headers, button icons, scripts, and other service names are the trademarks of Digg Inc.