So I have read bits and pieces here and there about SSH tunneling. I am told, the only way to browse the net from an unsecure hotspot is to tunnel into my home computer using SSH and then browse the web. Can someone explain to me in easy language how to do this exactly. I don't know if this matters but I installed hamachi (www.hamachi.cc) and VNC tonight. Any help would be appreciated. Thanks!
What is SSH tunneling and how do I do it?
-
Please click the link below for your operating system to download the TSG SysInfo Utility. Click on "Save File" then double-click the file to run it. Copy and paste the report in your initial post. Windows 7 and later (downloads a file named tsginfo.exe) | Windows XP (downloads a file named SysInfo.exe)
- Status
1 - 16 of 16 Posts
Joined
·
110,551 Posts
I think you're looking for problems where none exist. What you're suggesting would be a real kludge, and probably next to impossible to keep running. Also, since the upload speed of most broadband accounts is a lot slower than the download speed, it would also be pretty slow.
Other than doing financial transactions and the like from the unsecure hotspot, what's the issue? Make sure you have a decent firewall running...
Other than doing financial transactions and the like from the unsecure hotspot, what's the issue? Make sure you have a decent firewall running...
Joined
·
104 Posts
I have this set up on my home network. I have a server that is running all the time. I have the OpenSSH and UltraVNC servers installed as services so they are always running. I then remotely connect to the SSH server using PuTTY. PuTTY also allows you to set up the SSH tunnels. Then you can run the VNC viewer which will tunnel your remote desktop through the secured connection. Then you're surfing the internet using the browser on you home PC. Here's a link to the article I followed to set it all up. They used a different flavor of VNC, but I prefer UltraVNC because it allows for file transfers.
I don't think you're being overly cautious. I wouldn't want someone to get my email address and password if I wanted to quickly check my email using an open wireless network. Also this will be secure if you are using your own laptop on the open network. Nothing can protect you when you are using a public PC that may have a keylogger running.
I don't think you're being overly cautious. I wouldn't want someone to get my email address and password if I wanted to quickly check my email using an open wireless network. Also this will be secure if you are using your own laptop on the open network. Nothing can protect you when you are using a public PC that may have a keylogger running.
JohnWill- So there are no other problems with connecting to an insecure hotspot with them getting information that I send? I have a software firewall running on my computer but I wanted some extra protection. I have an extra computer in my home that I can leave runnnig all the time so no problems there.
mattice- Thanks for the link. See here is what confuses me. I actually installed UltraVNC last night to try out controlling another computer so that I can fix other peoples when they break. But that is not what I am asking for as far as making my connections secure. When I logon from a hotspot I just want my connections secure, NOT to be controlling my computer remotely. So in order to create that secure connection, all I have to do is run PuTTY? Do I have to be running VNC at the same time as PuTTY to have a secure connection? I guess the different terms and programs (VNC, PuTTY, OpenSSH etc.) get somewhat confused in my mind and I am not sure which ones actually need to be running to create a secure connection that I can surf securely with. Thanks in advance for your help and sorry for such a long response.
mattice- Thanks for the link. See here is what confuses me. I actually installed UltraVNC last night to try out controlling another computer so that I can fix other peoples when they break. But that is not what I am asking for as far as making my connections secure. When I logon from a hotspot I just want my connections secure, NOT to be controlling my computer remotely. So in order to create that secure connection, all I have to do is run PuTTY? Do I have to be running VNC at the same time as PuTTY to have a secure connection? I guess the different terms and programs (VNC, PuTTY, OpenSSH etc.) get somewhat confused in my mind and I am not sure which ones actually need to be running to create a secure connection that I can surf securely with. Thanks in advance for your help and sorry for such a long response.
Joined
·
896 Posts
Yeah, don't consider anything secure from a public hotspot.
I have a SQUID system running SSH on a high port. You can configure SSHd to forward any port. I have it forwarding TCP3128.
When I connect with an app such as SecureCRT I port forwarding to forward 127.0.0.1:3128 to the SSH session, this connects to squid.
With that, I have a profile in my browser that uses 127.0.0.1:3128 as it's proxy. Because I'm forwarding my loopback TCP 3128 to the SQUID instance, all my my traffic [including IM, ICQ, etc] is forwarded through the SSH tunnel.
It works well. In fact, I have SSH listening on quite a few different ports on the system in question [TCP 80,443,22,22666, etc] that it'll make it through most firewalls.
I have a SQUID system running SSH on a high port. You can configure SSHd to forward any port. I have it forwarding TCP3128.
When I connect with an app such as SecureCRT I port forwarding to forward 127.0.0.1:3128 to the SSH session, this connects to squid.
With that, I have a profile in my browser that uses 127.0.0.1:3128 as it's proxy. Because I'm forwarding my loopback TCP 3128 to the SQUID instance, all my my traffic [including IM, ICQ, etc] is forwarded through the SSH tunnel.
It works well. In fact, I have SSH listening on quite a few different ports on the system in question [TCP 80,443,22,22666, etc] that it'll make it through most firewalls.
01111110- Thanks for the response. I still don't really understand which programs do what. If someone could explain clearly what each program does (OpenSSH, VNC, Squid, PuTTY etc.) I think it would help me understand better what I need and how I would configure it correctly.
Joined
·
896 Posts
OPENSSH is a GPL licensed client/server SSH protocol. Two seperate parts. The client [what you use to connect], and the server listening [what you connect to]SKreme said:
The server can FORWARD locally listening ports to the client. [i.e. TCP 3128]
VNC is a client/server remote-desktop client/server application that forwards "screen print" of the server you're connected to. It's so you can see your Winders desktop/servers remotely.
Squid is a GPL licenses PROXY server. Runs on Linux [predominately] and allows you a huge host of configurable options. I use it, because Proxies CACHE. If I CACHE the data at the server, then it doesn't have to FETCH every request.
PUTTY is a freeware/GPL SSH client. It does the client side of OpenSSH.
Joined
·
19,935 Posts
If you get a CosmoPod account you can surf the Internet from there. You could also look into using Torrify.
You could use VNC or Hamachi to connect back to your network at home and surf the Internet thru your connection at home, but it will be slow.
You could use VNC or Hamachi to connect back to your network at home and surf the Internet thru your connection at home, but it will be slow.
I'm actually using Vidalia/Tor right now. Will that do the same job as Hamachi? I was under the impression that Vidalia/Tor would make it harder for snoops on the net to get data such as what sites you frequent etc. But does it encrypt your data?
Is cosmopod or ipig that much faster than using Hamachi?
Is cosmopod or ipig that much faster than using Hamachi?
Joined
·
19,935 Posts
[WEBQUOTE="http://www.torrify.com/"]Torpark
Welcome to the official Torrify homepage. Download Torpark and put it on a USB Flash keychain. Plug it into any internet terminal whether at home, school, or public. Run Torpark.exe and it will launch a Tor circuit connection, which creates an encrypted tunnel from your computer indirectly to a Tor exit computer, allowing you to surf the internet anonymously. How much does Torpark cost? IT'S FREE.
[/WEBQUOTE]
Welcome to the official Torrify homepage. Download Torpark and put it on a USB Flash keychain. Plug it into any internet terminal whether at home, school, or public. Run Torpark.exe and it will launch a Tor circuit connection, which creates an encrypted tunnel from your computer indirectly to a Tor exit computer, allowing you to surf the internet anonymously. How much does Torpark cost? IT'S FREE.
[/WEBQUOTE]
So I don't get it... if I am already using Vidalia (which uses Tor. See http://www.vidalia-project.net/ ), do I need to set up openssh or ipig? Is it the exact same thing?
1 - 16 of 16 Posts
- Status
Join the discussion
