41 Comments

  • Pingback: Tweets that mention Hak5 – Technolust since 2005 » Episode 614 – Firewall evasion, SSH and virtual appliances! -- Topsy.com

  • Pingback: Iraklis Athanasakis (herath72) 's status on Wednesday, 18-Nov-09 16:33:03 UTC - Identi.ca

  • Pingback: uberVU - social comments

  • Sitwon
    Reply

    The one thing about SSH tunneling is that not everyone has access their own VPS to SSH to and if you just want to tunnel occasionally it’s silly to pay for a whole VPS.

    My advice: Amazon EC2. You can spin up a server when you need it and spin it down when you’re done. Only costs you $0.085 an hour. A very mall price to pay for privacy on the go, and much better bandwidth than hosting your own on a residential broadband account.

  • Pingback: Road Warrior VPN.com Blog» Blog Archive » Hack 5 – Hacking PPTP VPNs with ASLEAP

  • Robin
    Reply

    When you are not able to connect to port 22 because of firewall restrictions, instead of using this “phpbased proxy”, I recommend forwarding port 443 or port 80 on your VPS to port 22, so you can connect to ssh over an open port.

    Personally I have my homeserver running ssh on port 443 at home, so that whereever I am, I can connect to it to tunnel my traffic or access my data.

    Greats from Germany,
    Hope to see you all on 26C3: http://events.ccc.de/congress/2009/wiki/index.php/Welcome

    Robin

  • JC Denton
    Reply

    Also I might mention that you can do IRC and your IP is protected along with the fact you have a little node in cyberspace that you can use for offsite backup and can connect from anywhere. I’m currently using it to watch hulu

  • Jakob
    Reply

    Great episode, some really usefull tips, clean and simple! The episode with OpenVPN ALS was also very nice, using ssh shell for me is just simple enough and basically all I need 🙂

    I don’t use Xchat, but doesn’t it support SOCKS ? Cause in that case you could just use the -D option. I know mIRC does, I’ve used that myself to tunnel my IRC, FTP and HTTP traffic through my box at home when I’m at school (wifi). A little side-note, I can highly recommend MyEnTunnel, http://nemesis2.qx.net/pages/MyEnTunnel , to establish and stay connected to your shell, if you wanna have a simple GUI.

    Thank for a nice show! Long time watcher, been watching all your episodes since the very first one.

    Jakob from Denmark

  • JC Denton
    Reply

    I have tried MyEnTunnel, its ok but still restricted. you get way more options and all together better range with the latter I mentioned.

  • Jakob
    Reply

    JC Denton – I’m not sure what you mean. MyEnTunnel is just a GUI for plink (PuTTy). This app can only do what it is created for, maintaining and creating SSH tunnel(s).

  • JC Denton
    Reply

    @Jakob yes you are right. What I’m saying is for all around functionality go with what I said. If you have a home server, etc. that type of thing then what you are saying works fine as a gui. So in essence what you are saying is 100% correct for what the app does.

  • jintoreedwine
    Reply

    Hey, great episode. One note about using the SOCKS proxy in Firefox. By default, Firefox will NOT use the proxy for DNS lookups! You must configure that in the about:config . Here is an article that briefly discusses it: http://www.outflux.net/blog/archives/2006/12/07/paranoid-browsing-with-squid/

    The bottom line is that without that, people would know where you are going, but couldn’t look at the actual data. So I guess this setting is just for the extra paranoid … 🙂

  • Jakob
    Reply

    @napisani – I think maybe it’s the web-config interface (cPanel or Plesk) for his VPS (@domain.com??)

    @jintoreedwine – Yeah great tip, that should really be in the shownotes! You can never get enough security 😉

    I still don’t understand that virtual application thing, does it come in a package with everything that is needed to run it, or ?

  • Allan Levene
    Reply

    Excellent show. I’ve noticed that they are getting more meaty which is what they should be for a tech channel. If we want to watch fluff, we’d watch the increasingly fluffy news shows, or the E! channel.

    Keep it up.

  • napisani
    Reply

    @Jakob – the best way to think of a virtual appliance is like a small precompiled operating system with the dependencies already installed for the specific program that you are trying to run.
    for example.
    if you have a web conferencing virtual appliance the web conferencing program might require perl or sql.
    the virtual appliance has all that already installed. Sort of like a specified disk image for the use of one program.
    Hope that helps

  • RGuerra
    Reply

    The proxy solution(and ssh tunneling) works only if the network admin allows all connections to go through the firewall and the router. I personally only allow our proxy server to go out, and other servers(like update servers, etc). All other machines are restricted inside, they can not even ping the gateway. So if the users change their proxy settings, they will not be able to surf.

  • Ryonni
    Reply

    I did the freebsdshell.com as recommended and it was perfect. and very easy too. I’m anonymous and have no problems getting past my work or the uni now. As were I couldn’t before. Thanks for the tip JC Denton

  • Julian Milligan
    Reply

    Hiya all installed the php proxy script and was able to acsess facebook and btinternet login page , but they would not allow me to log in face threw an error saying make sure your are loging from facebook and not another site i think this is the only draw back from the script or am I doin somthing wrong.

    Julian

  • Ryonni
    Reply

    @Julian, I had that same issue. You aren’t doing anything wrong. I finally gave up on that and went with a freebsdshell.com account. It just works. Hope this helps

  • Pingback: Hak5 – Technolust since 2005 » Episode 616 – Make your own Nintendo DS Games for free! Tunneling on a Mac and Virtual Routers.

  • Pingback: The TopOfMemory Security Feed » Blog Archive » Episode 616 – Make your own Nintendo DS Games for free! Tunneling on a Mac and Virtual Routers.

  • Enahs
    Reply

    Been doing this ssh-fu for a while. In the days of dialup I would create a ssh tunnel (v2 with compression) over my slow dialup to a linux box I had at work. Then I would port forward 3128 from my local linux serv to 3128 on the remote serv which was running squid proxy. It gave me a little speed bump because of the compression plus cacheing.

  • Pingback: Hak5 – Technolust since 2005 » SSH Tunneling the cross-platform way with Python and PHP

  • Pingback: The TopOfMemory Security Feed » Blog Archive » SSH Tunneling cross-platform with Python and PHP

  • Pingback: A quick guide to SSH tunnelling - Black Hat Forum

  • Bigmos
    Reply

    Fatal error: Call to undefined function ctype_alnum() in /var/www/xxxxxxxxx/htdocs/proxy/index.php on line 328

    ERROR PHP Proxy

    What wrong

  • Pingback: p3nt3st Hacking Vs. Security » SSH Tunneling cross-platform with Python and PHP

  • WeatherBug Elite 2.6.25
    Reply

    This is the punish Hak5 – Technolust since 2005 » Episode 614 – Firewall evasion, SSH and virtual appliances! blog for anyone who wants to assay out out virtually this message. You observation so untold its nigh exhausting to debate with you (not that I real would want…HaHa). You definitely put a new spin on a message thats been scripted active for years. City squeeze, just high!

  • Free Android apps
    Reply

    Excellent post at Hak5 – Technolust since 2005 » Episode 614 – Firewall evasion, SSH and virtual appliances!. I was checking continuously this blog and I’m impressed! Extremely helpful information particularly the last part 🙂 I care for such info much. I was looking for this certain info for a very long time. Thank you and best of luck.

  • download android apps
    Reply

    Nice post at Hak5 – Technolust since 2005 » Episode 614 – Firewall evasion, SSH and virtual appliances!. I was checking continuously this blog and I’m impressed! Extremely useful information specifically the last part 🙂 I care for such info much. I was looking for this particular information for a long time. Thank you and best of luck.

  • tinyurl.com
    Reply

    Hello there! I know this is kind of off topic but I was
    wondering which blog platform are you using for this website?
    I’m getting fed up of WordPress because I’ve had
    issues with hackers and I’m looking at alternatives for another platform.
    I would be awesome if you could point me in the direction of a good platform.

  • Hostgator 1 cent coupon 2016
    Reply

    ??lying upon your web ?pplication, the server can also require t?e following:
    . Cutting-Edge Tools: Certifi?d Partners Get Exclusive Tools One
    of the m?jor benefits of be?ng a Mi?rosoft Gold Partner is access to
    the l?te?t Microsoft tools and technolog?es. These mainframe
    computers are commonly referred to in the industry as servers or
    web servers. A fast approach to crop an image is to zoom in on the image ho? yo? would like
    it cropped and take a screen ?hot of the zoomed in image.
    C?mpanies that prof??sionally want to have their websites hosted
    which will eventually act as their ?rofessional representatives can approach IDS
    Web hosting for their preferred type. A person who want?
    to lo?k at a specific page of your web?ite sends a re??est t?rough his browser on his machine for this page.
    For most of us who are trying to create and launch our own websites for the first time,
    it can be a daunt?ng task in many ways. Through the phrase V??tual committed serv?r Internet site
    ?osting it is often o?vious which the solit?ry actual hosting s?rver is basicall? cut stra?ght into a num?er of Vi?tual
    Private Servers after which accessible to consumers using tiny amount of info exchange, Memory as properly as di?? space.

    Configu?ation: With a shared h?st, one will not have many options in the way of c?anging their settings.
    Another important thing th?t shared hosting normally does and sh?uld offer is a Control panel fo? the purposes of des?gning of
    web pa?es, creation of email acco?nts, database creation, editing
    of ?eb pages, addition of vari?us web ap?lications, etc.

  • Private Proxies
    Reply

    I’m really loving the theme/design of your web site. Do you ever run into any browser compatibility issues?
    A number of my blog visitors have complained about my blog not working correctly in Explorer
    but looks great in Chrome. Do you have any tips to help fix this problem?

  • Cheap Pandora Charms Jewelery Uk
    Reply

    Greetings! I’m Mickie Robins. The favorite hobby for him and his kids is coing collecting but he can’t permit it to
    be his work. Some time ago she proceeded to live in Wyoming.
    Her day job is a hotel receptionist and she’ll be promoted soon. Her husband and her keep a website.

    Check out check it out: Cheap Pandora Charms Jewelery Uk

  • Rival Kingdoms Ios Hack
    Reply

    Hi there just wanted to give you a brief heads up
    and let you know a few of the images aren’t loading correctly.
    I’m not sure why but I think its a linking issue.
    I’ve tried it in two different browsers and both show the same results.

You may use these HTML tags and attributes: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <s> <strike> <strong>