A Carafe of Ubuntu
Say you are at work and you setup a dynamic SSH tunnel using putty to your SSH server at home and visit google.com. Does the tunnel stop being encrypted when it leaves your home network from the SSH server? Or does it stay encrypted all the way to google.com?
What are you planning?
It is encrypted to your end point (the ssh server).
Come to #ubuntuforums! We have cookies! | Basic Ubuntu Security Guide
Tomorrow's an illusion and yesterday's a dream, today is a solution...
A Carafe of Ubuntu
What about dynamic tunneling?
How does creating a local tunnel to google.com and connecting to localhost,port differ from connecting to google through a dynamic tunnel in terms of what is encrypted?
From my understanding a dynamic tunnel is encrypted to the SSH server (and back to the client connection), while the SSH server sends clear text packets to google.com. However a localhost tunnel to google.com infers that that the connection all the way to google.com and back is encrypted.
What are you planning?
What do you mean? The same thing would apply if you are connected to a (remote) ssh server via a local tunnel and connect to a site with localhost. A) You'll get SSL error B) The connection is only encrypted to the SSH server.
Come to #ubuntuforums! We have cookies! | Basic Ubuntu Security Guide
Tomorrow's an illusion and yesterday's a dream, today is a solution...
A Carafe of Ubuntu
With a dynamic tunnel data travels to google.com from the SSH server unencrypted (only the tunnel to/from the SSH server from your client is encrypted).
With a local tunnel you are encrypting the data all the way to google.com and back to the SSH server.
Is this correct?
The SSL error isn't an issue as one can just accept the server mismatch. But SSL isn't really necessary over a local tunnel...although I agree google.com would force it.
What are you planning?
In either case, the encryption stops at the SSH server.
See here:
http://chamibuddhika.wordpress.com/2...ing-explained/
Come to #ubuntuforums! We have cookies! | Basic Ubuntu Security Guide
Tomorrow's an illusion and yesterday's a dream, today is a solution...
A Carafe of Ubuntu
I had seen this article again but reading it again a second time was helpful.
If you tunnel a VNC or RDP session over the internet the session is 100% encrypted only if the SSH server is running on the same computer you RDP or VNC' into. Correct?
What are you planning?
Yes, otherwise it hits the SSH "endpoint" and goes out to whatever machine you are trying to connect to unencrypted.Originally Posted by schnappi2
Come to #ubuntuforums! We have cookies! | Basic Ubuntu Security Guide
Tomorrow's an illusion and yesterday's a dream, today is a solution...
Ubuntu addict and loving it
Unless you are sending HTTPS requests over the tunnel, of course. But in that case, there really is no need for the tunnel.
If you ask for help, do not abandon your request. Please have the courtesy to check for responses and thank the people who helped you.
Blog · Linode System Administration Guides · Android Apps for Ubuntu Users
Posting Permissions
Adv Reply
Bookmarks