Re: bypassing employer's proxy to surf anonymously

From: alan <alan@xxxxxxxxxxxxxx>
Date: Tue, 13 Jun 2006 12:42:48 -0700 (PDT)

On Tue, 13 Jun 2006, Hubert Seiwert wrote:

When using SSH through the local proxy, it might be an idea to run the
outside sshd on
port 443, so it's harder to distinguish from an https server.

Or port 53. That is almost never blocked.

Also, in case you're not aware, a proxy server on the other side
(Privoxy in your example)
is not really necessary - You can use the ssh -D option (or 'Dynamic' in
the PuTTY port
forwarding options) to get a SOCKS server on localhost which makes
outside connections
through the remote sshd.

If you are running X, you can start up the web app on the other side and forward the X connection back through the ssh tunnel. Slow, but helpful when you have to get something done *now* that the censorware is filtering. (Like renewing your domain registration that expired yesterday.)

--
"Waiter! This lambchop tastes like an old sock!" - Sheri Lewis

------------------------------------------------------------------------------
This List Sponsored by: Cenzic

Concerned about Web Application Security? Why not go with the #1 solution - Cenzic, the only one to win the Analyst's Choice Award from eWeek. As attacks through web applications continue to rise, you need to proactively protect your applications from hackers. Cenzic has the most comprehensive solutions to meet your application security penetration testing and vulnerability management needs. You have an option to go with a managed service (Cenzic ClickToSecure) or an enterprise software (Cenzic Hailstorm). Download FREE whitepaper on how a managed service can help you: http://www.cenzic.com/news_events/wpappsec.php And, now for a limited time we can do a FREE audit for you to confirm your results from other product. Contact us at request@xxxxxxxxxx for details.
------------------------------------------------------------------------------

Follow-Ups:
- Re: bypassing employer's proxy to surf anonymously
  - From: jm

References:
- bypassing employer's proxy to surf anonymously
  - From:
- Re: bypassing employer's proxy to surf anonymously
  - From: Hubert Seiwert

Prev by Date: Publishing Findings on Commercial Applications
Next by Date: RE: bypassing employer's proxy to surf anonymously
Previous by thread: Re: bypassing employer's proxy to surf anonymously
Next by thread: Re: bypassing employer's proxy to surf anonymously
Index(es):
- Date
- Thread

Relevant Pages

Re: Some new SSH exploit script?
... Running sshd on port 22 anymore in this day ... about a year ago, and immediately moved ssh to a bizarre port, and setup an IP ... Concerned about Web Application Security? ... Download FREE whitepaper on how a managed service can ...
(Pen-Test)
Re: bypassing employers proxy to surf anonymously
... port 443, so it's harder to distinguish from an https server. ... through the remote sshd. ... You have an option to go with a managed service or an enterprise software. ...
(Pen-Test)
How did this happen?
... May 12 06:50:43 localhost sshd: Failed password for illegal user ... cgi from 212.93.149.205 port 2265 ... Starting sshd: ...
(comp.os.linux.security)
RE: possible ssh hack
... What version of SSHD were you running, ... Apache and we can help you out. ... Subject: possible ssh hack ... port 4207 ...
(Incidents)
Re: Possible New Security Tool For FreeBSD, Need Your Help.
... We just want to hide the sshd port until we need it. ... >> the Internet where would they put the sniffer? ... Do a traceroute between the host you're ...
(FreeBSD-Security)