On CHOW: Why are shopping carts so hard to steer?
BNET Business Network:
BNET
TechRepublic
ZDNet
TalkBack 5 of 33:
Next »
« Previous
Hot Pockets
Wireless Hot Spots. Oh so very convenient and oh so veheheheherrrry insecure.

So much so, if you've got a home PC running ssh server, I strongly recommend you consider using ssh, [url=http://en.wikipedia.org/wiki/Secure_shell]Secure Shell[/url][1].

Very simply, one can open a terminal shell to set up a tunneled SOCKS4 proxy with ssh for all of your web activity--example ssh syntax:

$ssh -D 8000 -f -N username@home_ip

Input your ssh password when prompted, then close the terminal window after the tunnel is set and backgrounded.

In your browser, set up your proxy to SOCKS4 and localhost (127.0.0.1) with the port above (port 8000 in the example command line above is arbitrary--you can make it any non-priviledged port you want)

At that point close and reopen your browser and off you go.

You have set up a secure tunnel to your home PC[2].

If you aren't sure if you are proxied to home, go to www.dnsstuff.com and you should see your home ip at the top of the screen.

OK George, so I am an ssh 'Fan Boy'.
For good reason.

[1] Windows client users, download a copy of [url=http://www.cygwin.com/]Cygwin[/url]
[2] Additional steps required to set up a ssh port (22) forward if PC is firewalled behind a router at home
Posted by: D. T. Schmitz   Posted on: 02/06/07 You are currently: a Guest | Members login | Terms of Use
Reply to Story Reply to Message

Alert moderator to an offensive message

Subscribe to this discussion via Email or RSS

Confused?  Richard Flude | 02/06/07
You have to explicitly permit the domains on your wireless infrastructure  georgeou | 02/06/07
OK, so like OpenID  Richard Flude | 02/07/07
RADIUS delegation is very similar to WS-Federation  georgeou | 02/07/07
Hot Pockets  D. T. Schmitz | 02/06/07
Different purpose  georgeou | 02/06/07
no not really  D. T. Schmitz | 02/07/07
That covers the user's security, but not the network's security  georgeou | 02/07/07
Well if they knew how they would!  D. T. Schmitz | 02/07/07
So you are saying that reporters are increadibly inept?  B.O.F.H. | 02/07/07
No that's not what I said  georgeou | 02/07/07
Seeing as I quoted you, what did you actually say?  B.O.F.H. | 02/07/07
Why not Read the Article?  mejohnsn | 02/10/07
I've got an article coming up on how to do this safely and easily  georgeou | 02/10/07
Important factor in software design.  Anton Philidor | 02/07/07
Shibboleth  R West | 02/07/07
I have a couple of notions that might help  nucrash | 02/07/07
But wait  D. T. Schmitz | 02/07/07
Sorry you didn't like it  nucrash | 02/07/07
nucrash--it's me  D. T. Schmitz | 02/07/07
or....  D. T. Schmitz | 02/07/07
Sorry for thinking of Ease of Use  nucrash | 02/07/07
Well said  D. T. Schmitz | 02/08/07
What you're talking about is a Wi-Fi bridge with a USB interface  georgeou | 02/08/07
Why not simplify the hardware  nucrash | 02/08/07
The USB method only works for PSK mode  georgeou | 02/08/07
It would have to be a PSK  nucrash | 02/08/07
What's wrong with my method?  georgeou | 02/08/07
Nothing really  nucrash | 02/08/07
Actually, you forced me to rethink which is good  georgeou | 02/08/07
Installations not allowed...  Marty R. Milette | 07/20/07
Like your ideas, but there are a few problems  at1as | 02/11/07
Correction, I'm not using DNS for authentication  georgeou | 02/12/07

What do you think?

SponsoredWhite Papers, Webcasts, and Downloads

advertisement
advertisement
Click Here