You're viewing a comment by nme and its responses.
|
Simplicity is prerequisite for reliability. |
About the site:
Twitter
Facebook
more
LinkedIn
Google+
GitHubSubscribe to my posts:
Subscribe through an RSS feed:
Subscribe through email:
My Books
Top Ten Articles:
- Turn any Linux computer into SOCKS5 proxy in one command
- Top Ten One-Liners from CommandLineFu Explained
- My Job Interview at Google
- Sed One-Liners Explained, Part I: File Spacing, Numbering and Text Conversion and Substitution
- MIT's Introduction to Algorithms, Lectures 1 and 2: Analysis of Algorithms
- A HTTP Proxy Server in 20 Lines of node.js Code
- Awk One-Liners Explained, Part I: File Spacing, Numbering and Calculations
- Low Level Bit Hacks You Absolutely Must Know
- The Definitive Guide to Bash Command Line History
- Working Productively in Bash's Vi Command Line Editing Mode (with Cheat Sheet)
Top Ten Downloads:
- perl1line.txt (381,936)
- bash redirections cheat sheet (.pdf) (269,212)
- bash history cheat sheet (.pdf) (232,827)
- awk cheat sheet (.pdf) (231,627)
- sed stream editor cheat sheet (.pdf) (173,994)
- screen cheat sheet (.pdf) (171,974)
- bash vi editing mode cheat sheet (.pdf) (171,636)
- perl's pack/unpack and printf cheat sheet (.pdf) (154,972)
- awk cheat sheet (.txt) (148,055)
- perl's special variable cheat sheet (.pdf) (139,406)
Recent Articles:
- Winamp, it really whips the llama's ass! (comic)
- Tenth site in online tools network: onlineHEXtools.com
- Ninth site in online tools network: onlinePNGtools.com
- Browserling is now a top 40k website in the world
- Knuth vs McIlroy (Epic Computer Science Battles)
- 1000 days of commits
- Browserling has helped Cameroonians restore Internet freedom
- Why does Browserling's comic have 10 different formats?
- Eighth site in online tools network: onlineBINARYtools.com
- How much traffic do domain typos get?
Article Categories:
- Awk Programming (8)
- Browserling (112)
- Cheat Sheets (13)
- Computer Science (9)
- Hacker's Approach (8)
- Howto (12)
- Ideas for Later (1)
- Interviews (8)
- Introduction to Algorithms (15)
- Linear Algebra (6)
- Mathematics (1)
- Misc (33)
- Musical Geek Friday (17)
- My Favorite Books (7)
- Node.js Modules (15)
- Perl Programming (16)
- Programming (38)
- Projects (13)
- Security (4)
- The New Catonmat (1)
- Tools (1)
- Unix Shell (31)
- Video Lectures (18)
- Visual Math Friday (1)
Article Archive:
- April, 2018 (1)
- March, 2018 (2)
- February, 2018 (3)
- January, 2018 (6)
- December, 2017 (5)
- November, 2017 (8)
- October, 2017 (5)
- September, 2017 (1)
- August, 2017 (4)
- July, 2017 (3)
- June, 2017 (1)
- May, 2017 (1)
- April, 2017 (4)
- March, 2017 (2)
- February, 2017 (4)
- January, 2017 (1)
- December, 2016 (5)
- November, 2016 (2)
- October, 2016 (2)
- September, 2016 (2)
- August, 2016 (3)
- July, 2016 (3)
- June, 2016 (1)
- May, 2016 (1)
- April, 2016 (1)
- March, 2016 (5)
- February, 2016 (1)
- January, 2016 (4)
- December, 2015 (4)
- November, 2015 (4)
- October, 2015 (7)
- September, 2015 (9)
- August, 2015 (1)
- July, 2015 (2)
- June, 2015 (2)
- May, 2015 (1)
- April, 2015 (6)
- March, 2015 (1)
- February, 2015 (1)
- January, 2015 (1)
- December, 2014 (1)
- November, 2014 (1)
- October, 2014 (2)
- September, 2014 (1)
- August, 2014 (1)
- July, 2014 (1)
- June, 2014 (1)
- May, 2014 (1)
- April, 2014 (1)
- March, 2014 (3)
- February, 2014 (3)
- January, 2014 (5)
- December, 2013 (1)
- November, 2013 (1)
- October, 2013 (1)
- September, 2013 (1)
- August, 2013 (1)
- July, 2013 (1)
- June, 2013 (1)
- May, 2013 (1)
- April, 2013 (1)
- March, 2013 (1)
- February, 2013 (2)
- January, 2013 (4)
- December, 2012 (1)
- November, 2012 (3)
- October, 2012 (4)
- September, 2012 (3)
- August, 2012 (2)
- July, 2012 (2)
- June, 2012 (1)
- May, 2012 (4)
- April, 2012 (3)
- March, 2012 (2)
- February, 2012 (1)
- January, 2012 (4)
- December, 2011 (15)
- November, 2011 (3)
- October, 2011 (2)
- September, 2011 (2)
- August, 2011 (3)
- July, 2011 (1)
- June, 2011 (2)
- May, 2011 (1)
- April, 2011 (1)
- March, 2011 (2)
- February, 2011 (2)
- January, 2011 (1)
- December, 2010 (2)
- November, 2010 (1)
- October, 2010 (2)
- September, 2010 (1)
- August, 2010 (2)
- July, 2010 (2)
- June, 2010 (2)
- May, 2010 (2)
- April, 2010 (2)
- March, 2010 (5)
- February, 2010 (5)
- January, 2010 (7)
- December, 2009 (6)
- November, 2009 (6)
- October, 2009 (2)
- September, 2009 (3)
- August, 2009 (2)
- July, 2009 (4)
- June, 2009 (1)
- May, 2009 (1)
- April, 2009 (1)
- March, 2009 (2)
- February, 2009 (7)
- January, 2009 (4)
- December, 2008 (8)
- November, 2008 (7)
- October, 2008 (5)
- September, 2008 (5)
- August, 2008 (9)
- July, 2008 (14)
- June, 2008 (4)
- May, 2008 (5)
- April, 2008 (8)
- March, 2008 (3)
- February, 2008 (1)
- January, 2008 (1)
- December, 2007 (1)
- November, 2007 (1)
- October, 2007 (3)
- September, 2007 (5)
- August, 2007 (10)
- July, 2007 (9)
A lot of work which could be simplified. U use windows too much ;)
$ sudo -i
# iptables -N proxy_allowed
# iptables -A proxy_allowed -s [ALLOWED_IP] -j RETURN
[...]
# iptables -A proxy_allowed -j DROP
# iptables -A INPUT --syn --dport 1080 -j proxy_allowed
# exit
$
$ ssh -g -D 1080 [REMOTE_IP]
no wrapper is required. if u wish to harden the solution use some knocking (or ping with specified packet length and iptables "recent" module) and/or ip-mac association.
socks does not offer much, to redirect dns or udp traffic it is better to use ppp over ssh or vpn (which I consider preferred).. openvpn is free and there is extremally simple windows gui client.
take care!
ps. python > perl ;P
Comment Responses
100% agree... "-D 1080" is all what you need. I like to add -p 443 to in order to make the SSH traffic less visible ;)
Then to avoid DNS leaks under Firefox, just make sure to set the two following variables to 1 under about:config.
network.proxy.network.proxy.socks_remote_dns = 1
network.proxy.socks_remote_dns = 1
When I Wireshark the above config I can only see HTTPS traffic even when typing non-working URLs.
Reply To This Comment