Mailing List Archive: Anonymous tunneling via ssh

Anonymous tunneling via ssh

Aug 26, 2002, 11:04 PM

Post #1 of 6 (1494 views)

Can I use ssh to build an anonymous encrypted tunnel for protocols like
http ?

At the moment I only can build up a tunnel using an account on the
remote machine (i.e. ssh foo@bar -L 12345:foo@bar:80). But I do not want
to register every user of the service before, I want that everybody can
build up this tunnel.

I know it would be better to use other solutions like i.e. https or
something, but because of some internal circumstances I want/have to use
ssh.

regards

stephan knabe

mailto: sknabe@gmx.de

Re: Anonymous tunneling via ssh [ In reply to ]

a.gietl at e-admin

Aug 29, 2002, 7:26 AM

Post #2 of 6 (1469 views)

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On Tuesday 27 August 2002 09:04, Stephan Knabe wrote:

As far as i know SSH can't do point-to-multipoint tunneling.

A possible solution would perhaps be to set up an proxy outside of your
network and tunnel to it via ssh. If you start the tunnel from your local
network and use the -g flag on ssh everybody within your network can define
the forwarded port on your machine running the tunnel as his proxy.

> Can I use ssh to build an anonymous encrypted tunnel for protocols like
> http ?
>
> At the moment I only can build up a tunnel using an account on the
> remote machine (i.e. ssh foo@bar -L 12345:foo@bar:80). But I do not want
> to register every user of the service before, I want that everybody can
> build up this tunnel.
>
> I know it would be better to use other solutions like i.e. https or
> something, but because of some internal circumstances I want/have to use
> ssh.
>
> regards
>
> stephan knabe
>
>
> mailto: sknabe@gmx.de

- --
e-admin internet gmbh
Andreas Gietl tel +49 941 3810884
Ludwig-Thoma-Strasse 35 fax +49 941 3810891
93051 Regensburg mobil +49 171 6070008

PGP/GPG-Key unter http://www.e-admin.de/gpg.html

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.7 (GNU/Linux)

iD8DBQE9bj0+tO5rHoFrLI4RAtIVAJ0Sm/TUVQlcjpAHupv4koPs0ji9lwCdFaWm
lhIUuMvHinmJys7ThxEv/xI=
=bDPn
-----END PGP SIGNATURE-----

Re: Anonymous tunneling via ssh [ In reply to ]

markus at openbsd

Aug 29, 2002, 7:29 AM

Post #3 of 6 (1461 views)

then create a single known username with a public or no passwd.

-m

On Tue, Aug 27, 2002 at 09:04:06AM +0200, Stephan Knabe wrote:
> Can I use ssh to build an anonymous encrypted tunnel for protocols like
> http ?
>
> At the moment I only can build up a tunnel using an account on the
> remote machine (i.e. ssh foo@bar -L 12345:foo@bar:80). But I do not want
> to register every user of the service before, I want that everybody can
> build up this tunnel.
>
> I know it would be better to use other solutions like i.e. https or
> something, but because of some internal circumstances I want/have to use
> ssh.
>
> regards
>
> stephan knabe
>
>
> mailto: sknabe@gmx.de

Re: Anonymous tunneling via ssh [ In reply to ]

Aug 29, 2002, 7:43 AM

Post #4 of 6 (1469 views)

You can set up a tunnel by running ssh + pppd. So the basic idea is you
use ssh to logon remotely to a user 'vpn' who has pppd as his shell. On
the client side you redirect ssh to a tty device and run pppd. Then make
a routing entry for the ppp interface as appropriate. You can find out
all the basic details in http://www.tldp.org/HOWTO/VPN-HOWTO/index.html.

Hope this is what you had in mind and good luck...

Stephan Knabe wrote:

>Can I use ssh to build an anonymous encrypted tunnel for protocols like
>http ?
>
>At the moment I only can build up a tunnel using an account on the
>remote machine (i.e. ssh foo@bar -L 12345:foo@bar:80). But I do not want
>to register every user of the service before, I want that everybody can
>build up this tunnel.
>
>I know it would be better to use other solutions like i.e. https or
>something, but because of some internal circumstances I want/have to use
>ssh.
>
>regards
>
>stephan knabe
>
>
>mailto: sknabe@gmx.de
>
>
>

Re: Anonymous tunneling via ssh [ In reply to ]

john_van_v at yahoo

Aug 29, 2002, 10:55 AM

Post #5 of 6 (1477 views)

Hi, I am so far ssh only for encryption. Are there well supported alternative
encrypted tunnels that Stephan could use ?? My interest is in encrypting the
network block device in the Linux kernel.

John, Linux Society

--- Markus Friedl <markus@openbsd.org> wrote:
> then create a single known username with a public or no passwd.
>
> -m
>
> On Tue, Aug 27, 2002 at 09:04:06AM +0200, Stephan Knabe wrote:
> > Can I use ssh to build an anonymous encrypted tunnel for protocols like
> > http ?
> >
> > At the moment I only can build up a tunnel using an account on the
> > remote machine (i.e. ssh foo@bar -L 12345:foo@bar:80). But I do not want
> > to register every user of the service before, I want that everybody can
> > build up this tunnel.
> >
> > I know it would be better to use other solutions like i.e. https or
> > something, but because of some internal circumstances I want/have to use
> > ssh.
> >
> > regards
> >
> > stephan knabe
> >
> >
> > mailto: sknabe@gmx.de

=====
John van Vlaanderen

#################################################
# CXN, Inc. Contact: john@thinman.com #
# President, The Linux Society #
# http://groups.yahoo.com/group/thelinuxsociety #
#################################################

__________________________________________________
Do You Yahoo!?
Yahoo! Finance - Get real-time stock quotes
http://finance.yahoo.com

Re: Anonymous tunneling via ssh [ In reply to ]

Aug 30, 2002, 9:39 AM

Post #6 of 6 (1462 views)

On Thu, Aug 29, 2002 at 11:55:27AM -0700, John van V. wrote:
> Hi, I am so far ssh only for encryption. Are there well supported alternative
> encrypted tunnels that Stephan could use ?? My interest is in encrypting the
> network block device in the Linux kernel.

There's stunnel, at http://www.stunnel.org/ .