Re: A Tunneling question - How does one use corkscrew , ssh , and eg firefox ?

On Dec 28, 7:24 pm, "Richard E. Silverman" <r...@xxxxxxxx> wrote:
"JH" ==jameshanley39@yahoo co uk <jameshanle...@xxxxxxxxxxx> writes:

    JH> On Dec 28, 4:38 am, "Richard E. Silverman" <r...@xxxxxxxx> wrote:
    >> >>>>> "JH" ==jameshanley39@yahoo co uk <jameshanle...@xxxxxxxxxxxx>
    >> writes:
    >>
    JH> hi this question is largely an ssh question... `cos corkscrew is
    JH> used through ProxyCommand in ssh_config .  Corkscrew has no
    JH> mailing list as of writing.  I am sure some SSH users here use it
    JH> with corkscrew.
    >>
    JH> I am having some trouble trying to figure out how to get corkscrew
    JH> working.
    >>
    JH> I am using squid as http and https proxy. As a test, so
    JH> 127.0.0.1:3128 (squid`s default port is 3128)..
    >>
    JH> As I understand it, I should be able to set up any browser or ftp
    JH> client or whatever, to tunnel through the squid HTTPS proxy, and I
    JH> use corkscrew to do it.
    >>  No.  Corkscrew is a tool for establishing a single connection to a
    >> remote TCP port, through an HTTP proxy which supports the CONNECT
    >> method.  The proxied TCP stream is connected to the stdin/stdout of
    >> the corkscrew program.
    >>
    JH> I have tried a few things though, without even getting as far as
    JH> firefox, and it gets nowhere.
    >>
    JH> usage: corkscrew <proxyhost> <proxyport> <desthost> <destport>
    JH> [authfile] $ corkscrew 127.0.0.1 3128 sourceforge.net 443 ~/a.a
    >>
    JH> I do not know what user/pass to put in the authfile, since HTTPs
    JH> sites like sourceforge.net do not require one from the browser..
    >>  The username/password is in case the *proxy* requires
    >> authentication to use it.
    >>
    JH> I tried this in ssh_config ProxyCommand corkscrew 127.0.0.1 3128
    JH> %h %p ~/a.a
    >>
    JH> then ssh sourceforge.net 443 and ssh sourceforge.net -p 443
    >>
    JH> but no luck
    >>
    JH> I have no idea how to go about using ssh with corkscrew.
    >>  And I have no idea what you're trying to do.  :) sourceforge.net
    >> has no SSH server running on the standard port (22), and on port
    >> 443 it has what you would expect -- an https server.  What do you
    >> expect to do with SSH in this context?
    >>
    >> -- Richard Silverman r...@xxxxxxxx

    JH> Was just trying to use corkscrew `cos it looks like a useful
    JH> tool..  Hoping to figure it out working forwards from
    JH> instructions. That didn`t work. So I tried working backwards, but
    JH> could not get it to start.

    JH> What you wrote clarified it greatly, and I got it working for what
    JH> it is meant to do..

    JH> On a related note- I spoke to somebody who said he was tunneling
    JH> SSH through HTTP proxy and did not need corkscrew.

    JH> I will use the terms home and work for the sake of obvious
    JH> illustration..As in one area is behind an http proxy, the other,
    JH> one has administrative access over. (in reality I am experimenting
    JH> in one location where I have full access).  This person I spoke to
    JH> did have a home-work situation..

    JH> So, This guy I spoke to that said he did not need corkscrew to
    JH> tunnel SSH through an HTTP PROXY.  He was behind an HTTP Proxy
    JH> that also did HTTPS (probably like most HTTP proxies).  He said
    JH> HTTPS is HTTP in SSH, and blind to what is in the SSH.

No; https is HTTP in TLS (SSL).  SSH and SSL have absolutely nothing to do
with one another; they are completely different protocols.

thanks again
.

Relevant Pages

  • Re: A Tunneling question - How does one use corkscrew , ssh , and eg firefox ?
    ...     JH> with corkscrew. ...     JH> use corkscrew to do it. ...     JH>SSHthrough HTTP proxy and did not need corkscrew. ...     JH> has no free redirector for me to make squid a transparent proxy). ...
    (comp.security.ssh)
  • Re: Hp - linux X-Application
    ... You definately do not need ssh to make this work.... ... xhost + grants "ALL" permissions to use your linux workstation as an X ... firstly install ssh without  ssh installation could not working xhost ...   Kumar ...
    (RedHat)
  • Re: Forward SSH to local port (without having sshd connect to other service)
    ...     myUnderstandingOfMinusL.png> ...     Shogun> and ssh connections. ... SSH client with a program which accepts a TCP connection, ...
    (comp.security.ssh)
  • Re: [opensuse] FW: IPTABLES
    ... If I can use Jerrys suggest i like to try this, but it have to bee easy ... Basically, all you have to do is to open the ssh port on the SUSE Firewall, ...     - AllowGroups remotesh ... users from the remotesh group! ...
    (SuSE)
  • Re: help:tool to bruteforce ssh connections
    ... Is ssh brute forcing at all effective? ...       is there any tool to bruteforce ssh login. ... InfoSec Institute ... Certified Ethical Hacker and Certified ...
    (Security-Basics)
Quantcast