Web based SSH

Tips and Tricks for Networking

Moderator: jkerr82508

User avatar
viking60
Über-Berserk
Posts: 9279
Joined: 14 Mar 2010, 16:34

Web based SSH

Postby viking60 » 28 Sep 2012, 18:58

I finally have managed to get my no-ip address to work so my router is directing traffic directly to the box I want. So I can check that the lamp server works on port 80 via a proxy like hidemyass.com or one of the many listed on http://proxy4free.com

But how to check ssh from the "outside"? :confused

Well there are some handy web based ssh terminals out there:

https://www.serfish.com/console/
https://webssh.uni.me/

Make sure you enter them with https or else your keystrokes can be logged.

Furthermore the server that expedites your data will do so as "man in the middle" with unencrypted data so you wil have to trust the service or change your "keystrokes" after you have finished testing.
It is important that you understand this so I will even spend a pic for further explanation:
Image
So this is way more insecure than traditional client/server ssh interaction where your data are dead secure all the way.

But there you are with only one box and no way of testing your setup or you are on holiday and your GF/Wife has forced you to leave the laptop at home and you simply need to log into your office box.
Just go the the next library and enter one of the two addresses above and simply ssh into your box from anywhere in the world.
If you have a working dyndns/ddclient or no-ip setup (or a fixed IP of course) it will work - I have tested it.

Even if you are at home with only one box you can test it directly from there - your firewall will tell you that it comes from the outside (the SSH tunneling server).
Manjaro 64bit on the main box -Intel(R) Core(TM) i7 CPU 920 @ 2.67GHz and nVidia Corporation GT200b [GeForce GTX 275] (rev a1. + Centos on the server - Arch on the laptop.
"There are no stupid questions - Only stupid answers!"

User avatar
rolf
Guru-Berserk
Posts: 1107
Joined: 16 Mar 2010, 16:07

Re: Web based SSH

Postby rolf » 28 Sep 2012, 20:23

bjoernvold-berserks have taught me how to ssh and fish from konqueror to my thin client web-server on the lan, tyvm. :greetings

So, there is a dynamic DNS service set up for lanlesalon.com and that can be got from anywhere. Is there no way to come in from outside on the http port and authenticate with some sort of "Hi, it's me!" to sshd? :think: I have been thinking of migrating our domain service from domain.com to dyndns.com, the dynamic DNS provider, and maybe some subscription there would provide remote access not too expensively. It's really such a low-traffic website and I am so seldom away that this is mainly a curiosity, not so much a necessity. :geek:

User avatar
viking60
Über-Berserk
Posts: 9279
Joined: 14 Mar 2010, 16:34

Re: Web based SSH

Postby viking60 » 28 Sep 2012, 21:33

You can generate your key on your box and send it to the salon. If you are able to open a port; 22 is default so you should probalby pick something like 222 or whatever and log in with or something.

The generated key that has to be copied to the client is stored in ~/.ssh/id_rsa.pub.
If you do not have it on your server already, you can generate it with

Code: Select all

ssh-keygen


The key must be copied to ~/.ssh/known_hosts on the client.
It could be done automatically with something like:

Code: Select all

ssh-copy-id -i ~/.ssh/id_rsa.pub salon.dyndns.org -p 222


It might work with -p 80 too - I have never tried :confused
Manjaro 64bit on the main box -Intel(R) Core(TM) i7 CPU 920 @ 2.67GHz and nVidia Corporation GT200b [GeForce GTX 275] (rev a1. + Centos on the server - Arch on the laptop.
"There are no stupid questions - Only stupid answers!"


Return to “Networking”