Re: A Tunneling question - How does one use corkscrew , ssh , and eg firefox ?

On Dec 28, 7:24 pm, "Richard E. Silverman" <r...@xxxxxxxx> wrote:
"JH" ==jameshanley39@yahoo co uk <jameshanle...@xxxxxxxxxxx> writes:

    JH> On Dec 28, 4:38 am, "Richard E. Silverman" <r...@xxxxxxxx> wrote:
    >> >>>>> "JH" ==jameshanley39@yahoo co uk <jameshanle...@xxxxxxxxxxxx>
    >> writes:
    >>
    JH> hi this question is largely an ssh question... `cos corkscrew is
    JH> used through ProxyCommand in ssh_config .  Corkscrew has no
    JH> mailing list as of writing.  I am sure some SSH users here use it
    JH> with corkscrew.
    >>
    JH> I am having some trouble trying to figure out how to get corkscrew
    JH> working.
    >>
    JH> I am using squid as http and https proxy. As a test, so
    JH> 127.0.0.1:3128 (squid`s default port is 3128)..
    >>
    JH> As I understand it, I should be able to set up any browser or ftp
    JH> client or whatever, to tunnel through the squid HTTPS proxy, and I
    JH> use corkscrew to do it.
    >>  No.  Corkscrew is a tool for establishing a single connection to a
    >> remote TCP port, through an HTTP proxy which supports the CONNECT
    >> method.  The proxied TCP stream is connected to the stdin/stdout of
    >> the corkscrew program.
    >>
    JH> I have tried a few things though, without even getting as far as
    JH> firefox, and it gets nowhere.
    >>
    JH> usage: corkscrew <proxyhost> <proxyport> <desthost> <destport>
    JH> [authfile] $ corkscrew 127.0.0.1 3128 sourceforge.net 443 ~/a.a
    >>
    JH> I do not know what user/pass to put in the authfile, since HTTPs
    JH> sites like sourceforge.net do not require one from the browser..
    >>  The username/password is in case the *proxy* requires
    >> authentication to use it.
    >>
    JH> I tried this in ssh_config ProxyCommand corkscrew 127.0.0.1 3128
    JH> %h %p ~/a.a
    >>
    JH> then ssh sourceforge.net 443 and ssh sourceforge.net -p 443
    >>
    JH> but no luck
    >>
    JH> I have no idea how to go about using ssh with corkscrew.
    >>  And I have no idea what you're trying to do.  :) sourceforge.net
    >> has no SSH server running on the standard port (22), and on port
    >> 443 it has what you would expect -- an https server.  What do you
    >> expect to do with SSH in this context?
    >>
    >> -- Richard Silverman r...@xxxxxxxx

    JH> Was just trying to use corkscrew `cos it looks like a useful
    JH> tool..  Hoping to figure it out working forwards from
    JH> instructions. That didn`t work. So I tried working backwards, but
    JH> could not get it to start.

    JH> What you wrote clarified it greatly, and I got it working for what
    JH> it is meant to do..

    JH> On a related note- I spoke to somebody who said he was tunneling
    JH> SSH through HTTP proxy and did not need corkscrew.

    JH> I will use the terms home and work for the sake of obvious
    JH> illustration..As in one area is behind an http proxy, the other,
    JH> one has administrative access over. (in reality I am experimenting
    JH> in one location where I have full access).  This person I spoke to
    JH> did have a home-work situation..

    JH> So, This guy I spoke to that said he did not need corkscrew to
    JH> tunnel SSH through an HTTP PROXY.  He was behind an HTTP Proxy
    JH> that also did HTTPS (probably like most HTTP proxies).  He said
    JH> HTTPS is HTTP in SSH, and blind to what is in the SSH.

No; https is HTTP in TLS (SSL).  SSH and SSL have absolutely nothing to do
with one another; they are completely different protocols.

thanks again
.

Relevant Pages

  • Re: A Tunneling question - How does one use corkscrew , ssh , and eg firefox ?
    ...     JH> with corkscrew. ...     JH> use corkscrew to do it. ...     JH>SSHthrough HTTP proxy and did not need corkscrew. ...     JH> has no free redirector for me to make squid a transparent proxy). ...
    (comp.security.ssh)
  • Re: Hp - linux X-Application
    ... You definately do not need ssh to make this work.... ... xhost + grants "ALL" permissions to use your linux workstation as an X ... firstly install ssh without  ssh installation could not working xhost ...   Kumar ...
    (RedHat)
  • Re: Forward SSH to local port (without having sshd connect to other service)
    ...     myUnderstandingOfMinusL.png> ...     Shogun> and ssh connections. ... SSH client with a program which accepts a TCP connection, ...
    (comp.security.ssh)
  • Re: [opensuse] FW: IPTABLES
    ... If I can use Jerrys suggest i like to try this, but it have to bee easy ... Basically, all you have to do is to open the ssh port on the SUSE Firewall, ...     - AllowGroups remotesh ... users from the remotesh group! ...
    (SuSE)
  • Re: read_nonblocking error in pxssh
    ... ssh -q -l root gerard ...   File "pxssh.py", line 244, in login ...     raise TIMEOUT.') ...
    (comp.lang.python)