Hello,
I need to manage my toolserver account, but i dont have Internet at my house. I talk a long time with the admin at my work, but SSH is restricted. I only can use 80 and 443 accros a proxy.
I dont understand at all about network, but is it possible to help me ?
Reading the web, i understand : * if the login.toolserver.org use 443 for ssh it can work ; * it exists something call http-tunnel (i can't connect to this site cause restriction, so i dont know what it is)
Do you think it exists a simple solution ? or already exists something like that on toolserver o_O ?
Thanks a lot for your time.
-bayo
bayo:
- if the login.toolserver.org use 443 for ssh it can work ;
port 443 is for SSL HTTP (https), it can't be used for SSH.
you should check if the proxy supports the CONNECT method, or else can function as a SOCKS proxy. if not, you probably won't be able to use SSH from there.
- river.
You could try using a Java SSH client, there are many available, search for "web ssh" in Google; while this is not an optimum solution there aren't very many alternatives. If you had money to invest in the issue then you could purchase a VPS and configure it to accept connections from port 80, but I presume this is not possible and isn't guaranteed to work depending on how your works network is set up.
MinuteElectron.
On Tue, July 8, 2008 7:11 pm, MinuteElectron wrote:
You could try using a Java SSH client,
Java SSH clients just connect to port 22, so that is not going to work.
At my high school I circumvented the firewall by running my SSH daemon at port 443. The proxy allowed connects to port 443, so that worked. Yes, 443 is https, but I don't have a web server running in SSL mode anyway.
On the toolserver, this is also possible, but as flyingparchment noted, you are probably violating some RFC's. Now I really wouldn't know what login.toolserver.org would be doing with a webserver, but I guess having an SSH server on that port interferes with flyingparchments plans to take over the world.
--valhallasw
Merlijn van Deen wrote:
On Tue, July 8, 2008 7:11 pm, MinuteElectron wrote:
You could try using a Java SSH client,
Java SSH clients just connect to port 22, so that is not going to work.
Actually there are many which make the actual SSH connection from the server it is hosted on.
MinuteElectron.
MinuteElectron schrieb:
Actually there are many which make the actual SSH connection from the server it is hosted on.
A Java *Applet* might work. But that wouldn't be possible with RSA authentication, would it? Or maybe, but uploading the private key over HTTPS...
Anyway, here'S a different solution, using the httptunnel tool: http://www.jfranken.de/homepages/johannes/vortraege/ssh3_inhalt.en.html "OpenSSH -- Section 3: Breaking Firewalls" -- looks quite good on a first glance.
Here's another one, using:http://dag.wieers.com/howto/ssh-http-tunneling/ "Tunneling SSH over HTTP(S)" - I havn't looked closely, but it seems to use some magic apache configuration.
HTH
Daniel
Hello, Am Dienstag 08 Juli 2008 16:27:10 schrieb bayo:
I talk a long time with the admin at my work, but SSH is restricted.
then you should not try to circumvent it. I guess there is a reason that it is forbitten. There could be legal problems (may be you will fired) for you, too.
Sincerly, DaB.
then you should not try to circumvent it. I guess there is a reason that it is forbitten. There could be legal problems (may be you will fired) for you, too.
I told to him that if it is possible to circumvent it, I would do :) he told me, as a challenge, that somebody already tried. But he dont understand i dont want to play...
Maybe, i will create a simple web services into my account to execute some command, with a private password. Solution explaine on top is too hard for me. If this is a security problem for toolserver, i dont know, is allowing https connexion on toolserver can help ?
Thanks a lot -bayo
On Wed, Jul 9, 2008 at 4:01 AM, bayo bayo.fr@gmail.com wrote:
then you should not try to circumvent it. I guess there is a reason that it is forbitten. There could be legal problems (may be you will fired) for you, too.
I told to him that if it is possible to circumvent it, I would do :) he told me, as a challenge, that somebody already tried. But he dont understand i dont want to play...
Maybe, i will create a simple web services into my account to execute some command, with a private password. Solution explaine on top is too hard for me. If this is a security problem for toolserver, i dont know, is allowing https connexion on toolserver can help ?
Thanks a lot -bayo
Perhaps you could do some kind of web interface that remote desktops to your home computer? I've seen that done before and it might work.
On Thu, Jul 10, 2008 at 9:08 PM, Casey Brown cbrown1023.ml@gmail.com wrote:
Perhaps you could do some kind of web interface that remote desktops to your home computer? I've seen that done before and it might work.
Oh, hmm..you say you don't have internet at home? Well, you could always do it from a friend's computer or something. ;-) (Otherwise, nevermind. :P)
On Tue, Jul 08, 2008 at 04:27:10PM +0200, bayo wrote:
I need to manage my toolserver account, but i dont have Internet at my house. I talk a long time with the admin at my work, but SSH is restricted. I only can use 80 and 443 accros a proxy.
Since toolserver won't run ssh on port 443, and you need ssh on port 443, the easiest solution is to run ssh on port 443 on a computer you control.
You can rent a cheap virtual shared server for $20 or less per month. The resources required for ssh are very minimal, so the cheapest plan will be sufficient. Install ssh on that server, make it listen on port 443, and you're done.
If you don't want to spend the money to rent a server, and have a friend with internet access, you might be able to convince them to make their ssh server listen on port 443, and give you shell access on their computer.
As a final option, perhaps you can find a public library that has computers on which you can run a java ssh client, and carry your private key on a usb drive.
- Carl
If he/she rents a private VPS, will he/she need a Toolserver account then? :P
On Wed, Jul 9, 2008 at 10:13 AM, Carl Beckhorn cbeckhorn@fastmail.fm wrote:
On Tue, Jul 08, 2008 at 04:27:10PM +0200, bayo wrote:
I need to manage my toolserver account, but i dont have Internet at my house. I talk a long time with the admin at my work, but SSH is restricted. I only can use 80 and 443 accros a proxy.
Since toolserver won't run ssh on port 443, and you need ssh on port 443, the easiest solution is to run ssh on port 443 on a computer you control.
You can rent a cheap virtual shared server for $20 or less per month. The resources required for ssh are very minimal, so the cheapest plan will be sufficient. Install ssh on that server, make it listen on port 443, and you're done.
If you don't want to spend the money to rent a server, and have a friend with internet access, you might be able to convince them to make their ssh server listen on port 443, and give you shell access on their computer.
As a final option, perhaps you can find a public library that has computers on which you can run a java ssh client, and carry your private key on a usb drive.
- Carl
Toolserver-l mailing list Toolserver-l@lists.wikimedia.org https://lists.wikimedia.org/mailman/listinfo/toolserver-l
James Hare wrote:
If he/she rents a private VPS, will he/she need a Toolserver account then? :P
Sure, the toolserver has access to the databases; his VPS would not. The toolserver is also considerably more powerful, has more disk space, and generally more centralized than any cheap VPS would be.
MinuteElectron.
toolserver-l@lists.wikimedia.org