Re: A Tunneling question - How does one use corkscrew , ssh , and eg firefox ?

On Dec 28, 7:24 pm, "Richard E. Silverman" <r...@xxxxxxxx> wrote:
"JH" ==jameshanley39@yahoo co uk <jameshanle...@xxxxxxxxxxx> writes:

    JH> On Dec 28, 4:38 am, "Richard E. Silverman" <r...@xxxxxxxx> wrote:
    >> >>>>> "JH" ==jameshanley39@yahoo co uk <jameshanle...@xxxxxxxxxxxx>
    >> writes:
    JH> hi this question is largely an ssh question... `cos corkscrew is
    JH> used through ProxyCommand in ssh_config .  Corkscrew has no
    JH> mailing list as of writing.  I am sure some SSH users here use it
    JH> with corkscrew.
    JH> I am having some trouble trying to figure out how to get corkscrew
    JH> working.
    JH> I am using squid as http and https proxy. As a test, so
    JH> (squid`s default port is 3128)..
    JH> As I understand it, I should be able to set up any browser or ftp
    JH> client or whatever, to tunnel through the squid HTTPS proxy, and I
    JH> use corkscrew to do it.
    >>  No.  Corkscrew is a tool for establishing a single connection to a
    >> remote TCP port, through an HTTP proxy which supports the CONNECT
    >> method.  The proxied TCP stream is connected to the stdin/stdout of
    >> the corkscrew program.
    JH> I have tried a few things though, without even getting as far as
    JH> firefox, and it gets nowhere.
    JH> usage: corkscrew <proxyhost> <proxyport> <desthost> <destport>
    JH> [authfile] $ corkscrew 3128 443 ~/a.a
    JH> I do not know what user/pass to put in the authfile, since HTTPs
    JH> sites like do not require one from the browser..
    >>  The username/password is in case the *proxy* requires
    >> authentication to use it.
    JH> I tried this in ssh_config ProxyCommand corkscrew 3128
    JH> %h %p ~/a.a
    JH> then ssh 443 and ssh -p 443
    JH> but no luck
    JH> I have no idea how to go about using ssh with corkscrew.
    >>  And I have no idea what you're trying to do.  :)
    >> has no SSH server running on the standard port (22), and on port
    >> 443 it has what you would expect -- an https server.  What do you
    >> expect to do with SSH in this context?
    >> -- Richard Silverman r...@xxxxxxxx

    JH> Was just trying to use corkscrew `cos it looks like a useful
    JH> tool..  Hoping to figure it out working forwards from
    JH> instructions. That didn`t work. So I tried working backwards, but
    JH> could not get it to start.

    JH> What you wrote clarified it greatly, and I got it working for what
    JH> it is meant to do..

    JH> On a related note- I spoke to somebody who said he was tunneling
    JH> SSH through HTTP proxy and did not need corkscrew.

    JH> I will use the terms home and work for the sake of obvious
    JH> illustration..As in one area is behind an http proxy, the other,
    JH> one has administrative access over. (in reality I am experimenting
    JH> in one location where I have full access).  This person I spoke to
    JH> did have a home-work situation..

    JH> So, This guy I spoke to that said he did not need corkscrew to
    JH> tunnel SSH through an HTTP PROXY.  He was behind an HTTP Proxy
    JH> that also did HTTPS (probably like most HTTP proxies).  He said
    JH> HTTPS is HTTP in SSH, and blind to what is in the SSH.

No; https is HTTP in TLS (SSL).  SSH and SSL have absolutely nothing to do
with one another; they are completely different protocols.

thanks again