Ubuntu :: Create SSH Tunnel Before Login (Presession?)?
Jun 15, 2010
Just give you the background:1) Let's call the two machines, Box A and Box B.2) OpenSSH is running on both machines.3) Key based authentication is setup between two users on these two machines, and both can login into the other with no problems at all.4) I'm also port tunnelling over SSH to encrypt some traffic between the two machines. (I did have the port tunnelling code here, but this forum won't let me post URL ).I can obviously then forward port 1000 on Box A to port 1000 on Box B, securely.However ... and this is my problem ... I want this port tunnelling connection to be automatic whenoot the machine, e.g. Presession" and "before" a user logs in.I tried adding the tunnel command to gdm/PreSession/Default, but the problem then is because the user is not *logged in* at this stage, it can't use the user's private key to connect to the server, and hence can't automatically create the connection.
View 1 Replies
ADVERTISEMENT
Jun 15, 2010
Just give you the background:1) Let's call the two machines, Box A and Box B.2) OpenSSH is running on both machines.3) Key based authentication is setup between two users on these two machines, and both can login into the other with: "ssh user@host" with no problems at all.4) I'm also port tunnelling over SSH to encrypt some traffic between the two machines: "ssh -f -N -L 1000:HOSTNAME:1000 user@HOSTNAME"I can obviously then use "localhost:1000" to connect Box A to port 1000 on Box B securely.However ... and this is my problem ... I want this port tunnelling connection to be automatic when I boot the machine, e.g. "Presession" and "before" a user logs in.I tried adding to gdm/PreSession/Default: "ssh -f -N -L 1000:HOSTNAME:1000 user@HOSTNAME"But the problem then is because the user is not *logged in* at this stage, it can't use the user's private key to connect to the server, and hence can't automatically create the connection.How do I get Box A to automatically create a tunnel over a port to Box B, without any intervention from me, *prior* to any users logging in?
View 2 Replies
View Related
Oct 3, 2010
I Need to make an SSL tunnel over SSH, I need to create exactly an SSL tunnel,I have a situation like that, I heared it is possible,but don't know how to create an SSL tunnel over SSH i am having putty installed on my pc,So i think i can use putty for this purpose, But i don't know how to do this.
View 1 Replies
View Related
Aug 3, 2011
I wanted to create an ssh tunnel but I do not know what commands to run .. my environment is as follows:
LAN Internet Office LAN
Home PC <-> Linux firewall <-> http server..
According to the above what I figure is that I have an internal web server at my job and I need to create a tunnel to access the web server from my PC in my home. I know I can do a port forwarding with the firewall but I don't want to publish this web server to Internet. My home PC and both servers (firewall and web) are ubuntu. My idea is create a ssh tunnel that forward port 8080 on localhost in my home pc, to the firewall (obviously with public ip), and the the firewall forward to port 80 on office web server at my job. Note that the firewall accepts ssh connections to port 22, same for web server...
View 2 Replies
View Related
Sep 17, 2010
I'm trying to run a script to execute the command
Code:
ssh -D port host
when my laptop connects to internet. I have placed the script in /etc/network/if-up.d/.The scripts is being run when it should, but the SSH-tunnel isn't created.I can however run the script manually, as root, and then the tunnel is created.
View 7 Replies
View Related
Jun 8, 2010
i need possible direction on setting up a tunnel between 2 different network. The tunnel will be used by devices from the 2 different network to communicate with each other (for eg DevA and DevB).
DevA <-> Linux A <=====================> Linux B <-> DevB
View 3 Replies
View Related
Nov 28, 2010
I'm trying to create EoIP interface on ubuntu so i can create a simple tunnel to my mikrotik router. Is there anyone know how or even done that? If EoIP is not possible, is there any other simple way?
I had already read and thought about doing it with OpenVPN, but when I read the community documentation for OpenVPN on ubuntu 10.10, I fear it won't connect the tunnel to mikrotik OpenVPN server, since OpenVPN on ubuntu uses 2 certificate and 2 key files(as i read on the docs), but mikrotik configuration, i can see only 1 certificate can be applied on. This confuses me and make me decide to use EoIP(but i can't find any tutorial/docs about it). I don't actually need the encryption and security, i just need to create a tunnel for ubuntu and mikrotik.
View 2 Replies
View Related
Nov 8, 2010
Machine A is located behind client firewall. The machine runs telnetd. This is Linux machine with Python 2.5.4 installed. I do not know the IP addy of the router and firewall is not open incoming. outgoing firewall is open.
Machine B (Windows machine) is a server with well known IP address. I can install any programs I want on either machine.
The idea is that I want Machine A to open a socket to machine B. Then I want to hold that socket and use to run a telnet session from Machine B to Machine A telnetd server.
View 1 Replies
View Related
Nov 26, 2010
I'm looking for a tutorial on how to create a simple pppd tunnel between two machines. I've found alot of tutorials about pppd over ssh (using the pty option) but for the purpose I just want a simple pppd tunnel.
Specs
host 1: lan ip 10.101.10.20 running slackware 13.0
host 2: lan ip 10.101.10.21 running slackware 13.1
View 2 Replies
View Related
Feb 4, 2011
I am using 10.04 ubuntu and I have forgotten my password to login to a ssh tunnel. It is not the root password on my computer. Is there any way I can find the password out, change it, or just start over and create a new one? I know it isn't a connection problem because I can't login to ssh from localhost either. I've tried reinstalling ssh too.
View 3 Replies
View Related
Mar 14, 2011
I have an security cam with a built-in webpage inside my home network. That camera is using basic HTTP authentication instead of SSL. I want to be able to access the camera's webpage from outside my network, but I don't want to open an unencrypted video stream to the outside world. Right now, I'm doing some cumbersome ssh tunneling where I bounce off an ssh server like: ssh -N -L 9090:[URl]..and then I connect to my web page like: http://localhost:9090
But this is a pain. Now, gentle reader, I beseech you to tell me how I can use linux (Ubuntu) to get a fully encrypted SSL connection to my internal web page without the hassle of creating an ssh tunnel each time. I believe I can use stunnel, but I'm not sure of the command.
View 1 Replies
View Related
Feb 19, 2010
I'm tunneling VNC over SSH, which I manage to get working. What I want to do is this: Load into GDM as soon as Ubuntu finishes loading (I think I got this to work via the login screen config). As soon as it loads, I want it to run the command: x11vnc -safer -localhost -nopw -once -display :0 This way I don't need to issue that command over SSH anymore. Can I do this? Or is there a 'better way' to access the GUI. The machine is being stored well away from monitor/keyboard, so accessing it remotely is the way I want to do it. I'm not entirely comfortable working from the commandline so GUI it is.
View 5 Replies
View Related
Jun 10, 2010
Is there a way to create a user that will not show up in the GDM login screen? This user also needs to have sudo access
View 6 Replies
View Related
Jan 19, 2011
I am kind of new to servers and need to set up a server in the lab (for 4-5 clients). I heard ubuntu has a different server edition. But I already have ubuntu desktop edition so I was wondering if I really have to install a server edition for my limited functionality. If it is not required to install a full blown server and I can do with the one I have, how do I go about creating accounts for remote login?
View 2 Replies
View Related
Jun 7, 2011
I have SSH running on a computer I use as a server at home and login to it for my own purposes but am needing to share access to this server with someone else, and I'd like to do it in a way so that when they sign in all they see is the contents of one folder and nothing outside of it. So I'd like them to have full access to this folder and do anything they want with it, but not be able to browse outside of it at all via something like WinSCP (they're using Windows). I'm thinking I need to create a new account for them to sign in with but beyond that I'm not sure what I need to do. The only other special thing is that the folder I'd like them to be presented with is actually on an external hard drive. We're going to be doing a lot of online music collaboration and I need to give him lots of free space to drop files and the internal hard drive doesn't have a lot to spare right now.
View 6 Replies
View Related
Nov 20, 2010
I know there are ways to change the login of a linux box (runlevel 3) so that you don't see the regular login prompt but that you get a list with options. You see this with appliances.
My goal is to create a login like some of those appliances have. Instead of just getting a login prompt you can select several options like login, change network configuration, change password, stuff like that. How can I do this? Is there an Open Source tool to configure this?
View 1 Replies
View Related
Aug 11, 2010
All day I have to connect to various unix servers via ssh or ovpn. These servers report the current ip hourly to our dns server. I am trying to minimize the few hundred times a day i type ssh myUN@xy1234.mydns etc to connect. 1234 being a store number.
I would like to create a login script that has 2 options. -o = ovpn and -s= ssh. Is this possible.
ssh muUN@xy____.mydns is always used for ssh.
openvpn --remote xy_____.mydns --config client.ovpn is always used for ovpn.
I would like to be able to type something like,
[jim@localhost tools]$ ./login -? 1234
again 1234 being the store number I need to connect to.
View 1 Replies
View Related
Oct 20, 2010
I was trying to create a shell script which will automatically login to the server 192.168.1.7 and checks if a user exists there or not, if it doesn't exist then it should create the user.I have very little idea about shell scriptThis is what I tried:Quote:
#!/bin/bash
pass="sacharje"
ssh 192.168.1.7
Now, how to pass that password automatically to the ssh when it asks for the password? (I can't use public key authentication here)
View 10 Replies
View Related
May 26, 2010
I noticed in Fedora that in Authenticate Configs ->Advanced, that there is an option to "Create home directories on the first login".I'd like to know if its possible to enable that through a text config file on a CentOS box that has ldap authentication enabled. Right now it's complaining that the home folder does not exist upon loggin with an ldap account.
View 1 Replies
View Related
Sep 18, 2010
I need to produce a script that will create a report that will be emailed to me that will Log user login activity to detect unauthorized remote access attempts. Where would I start?
View 2 Replies
View Related
Mar 3, 2011
Does anyone know what is the best open source proxy solution out there? What we need out of the proxy are the following: Access Control - There should be a web interface for managers to login and create proxy user ID's for external people Good password complexity requirement Lock down the allowed websites
View 1 Replies
View Related
Mar 26, 2010
create a profile settings and network drive can be mapped automatically when user login to the (like Domain and active user profile on windows environment) Ubuntu systems?
View 1 Replies
View Related
Nov 21, 2010
I would like to have a linux server for Using SSH Tunnel with PuTTY ! May i can use ubuntu desktop edition for this ? or it is bether to use server edition ?
View 8 Replies
View Related
Jun 15, 2011
I have set up a Ubuntu 10.10 server. I have been using ssh tunnels to encrypt my web traffic at public wifi. I am trying to make this server as secure as posible so I enabled ufw. I allowed SSH and HTTP traffic in and denied everything else. But when I do that I can not use SSH -D because when I try to visit a webpage it does not load and I get the following.
Code:
uname@mybox:~$ channel 3: open failed: connect failed: Connection timed out
^C
uname@mybox:~$ fclchannel 4: open failed: connect failed: Connection timed out
^C
uname@mybox:~$ exit
logout
What do I have to do to allow ufw to allow ssh tunnels through?
View 4 Replies
View Related
Sep 1, 2011
When I view a work computer Remote Desktop settings it states that connections are only available to other computers on the LAN.This gives me a terminal window on the work pc2.Is there any way I can start a Remote Desktop session on pc2 through the ssh port forwarded session?
View 4 Replies
View Related
Jan 12, 2010
Hi, I have a server at my home which is a Ubuntu 9.1 which is setup as a NFS server using NFS v3. I am also using DYN DNS to access my home server remotely from another location using SSH. Everything works good, I can sucessfully log in to my server from my laptop via SSH, however my problem mounting my NFS share which consists of appx. 300 mp3 files. My question is:
1 How Do I Tunnel a NFS share through a SSH tunnel?
2 Is there any other configuration? needed to be done to the router?
3 is there anything needed to be configured to the server or my laptop?
4 Manual mounts is fine for me I don't care about automounting.
I just want to be able to mount the NFS share via the SSH Tunnel and play my music and access other files from my server.I just need the steps to set up this connection.
View 2 Replies
View Related
Jan 31, 2010
so i start it with ssh -f -R 4096:localhost:22 me@server.com and it comes up and someone can log in at the remote end. how do i close the tunnel from the initiating end ? netstat doesnt seem to identify my end of the tunnel , unless im looking for the wrong thing!
View 1 Replies
View Related
Jan 31, 2010
Browsing via SSH Tunnel very slow When browsing in firefox at work via proxy through ssh on my 8.04 server the speed is near dial up. I have compression enabled, tried restarting ssh, and rebooting the server but it remains so sluggish. At home the connection is quick but the speed is lost in translation once I ssh in. I also tried adding "UseDNS no" to the ssh config but that did not help with the slow login or any other speed issues.
View 5 Replies
View Related
Mar 29, 2010
I tried this :
Quote:
ssh -ND 9999 username@home_router_ip_address
and this is output :
�nani@jebe-kevu-ovaj-PC:~$ ssh -ND 999 nani@nani.homelinux.com
Privileged ports can only be forwarded by root.
nani@jebe-kevu-ovaj-PC:~$ sudo ssh -ND 999 nani@nani.homelinux.com
[code]....
which password is he looking for exacly ? user nani is main user at ubuntu after he asked me for password i typed my nani user password and i got in , after how you can see he ask me for onather password i tried the nani�s password but nothing is heppening ?
View 1 Replies
View Related
Aug 9, 2010
I know this has probably been solved multiple times, but I've searched the forum to no avail. I have a PPTP server setup properly with all ports forwarded correctly. A remote machine can connect and authenticate just fine. They get their IP assigned and everything.
The problem is that no traffic is being routed through the tunnel. Or, rather it is but the server doesn't seem to handle it. In a web browser I just get an error message. On a windows client I ran ipconfig and found a gateway address had not been assigned through the VPN tunnel. Could this be the problem? If so, how can I fix it?
View 1 Replies
View Related
