On Thu, 10 Jul 2003, Michael Pusateri wrote:
> What secure proxy do you use?
All off-the-shelf Linux stuff. I have a "squid" running that caches
web pages for me and listens on port 888 on my home box. I have DSL
at home with a higher upload (384Kbps) and a fixed IP address, and
I have a public SSH server also running on that box. I made an account
on my home machine that has a "*" password (so you can't log into
it directly, and has a passphrase-based ssh2 public key. The shell
for this login-proxy account is set to a small c program that spits
out a NULL every 5 mins or so (for benefit of firewalls that have
NAT-timeouts, not really necessary 'cause my SSH2 server has periodic
"ping"s (keepalives?) on.
When I'm at a hotspot (hell, at *work*, even!), I have a little xterm-
based window that I can pop up. It queries me for that SSH2 passphrase,
then forwards port 8888 on the laptop to port 888 at home- so I have
my browser proxy thru localhost:8888 (for non-secure HTTP only, HTTPS
doesn't need this), and my browsing is encrypted and proxied. I only
get ~40K byte/sec web speeds this way, but since most of what I view
outside the home isn't too graphics-oriented, I never notice.
Panix has SSL IMAP and SMTP, so that's a separate solution for the
mail end of things.
-Kenny
--
Kenneth R. Crudup Sr. SW Engineer, Scott County Consulting, Los Angeles
H: 3801 E. Pacific Coast Hw #9, Long Beach, CA 90804-2014 (888) 454-8181
W: 2052 Alton Parkway, Irvine, CA 92606-4905 (949) 252-1111-X240
