Linux - NewbieThis Linux forum is for members that are new to Linux.
Just starting out and have a question?
If it is not in the man pages or the how-to's this is the place!
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Introduction to Linux - A Hands on Guide
This guide was created as an overview of the Linux Operating System, geared toward new users as an exploration tour and getting started guide, with exercises at the end of each chapter.
For more advanced trainees it can be a desktop reference, and a collection of the base knowledge needed to proceed with system and network administration. This book contains many real life examples derived from the author's experience as a Linux system and network administrator, trainer and consultant. They hope these examples will help you to get a better understanding of the Linux system and that you feel encouraged to try out things on your own.
Click Here to receive this Complete Guide absolutely free.
What I want is to let members to my site connect to my server using an encrypted connection, i.e., https://my-server.net, and from there browse anywhere they want. Most of them will only be using it to go to sites that we recommend for investments.
The real tricky part is that many of them come from countries that are not exactly free (I say this as though any of us are really free from governmental oppression of some sort), and so their ISP isn't able to track them to anything that can be used against them. All their ISP will see is an encrypted connection to our site.
Does squid provide for all this anonymity?
And, if I could impose on you further to tell me how to acquire squid and install it, I will be very grateful!
Distribution: windows xp home, windows 98, red hat 9, fedora core 3, redhat enterprise linux, win2000 pro/server
i believe squid has authentication, but is set up in the browser, there is no way (i am aware of) that will allow someone to type in their browser "https://my-server" and be able to then browse to other places on the net unless you put VNC on this computer, then they will control another computer in a "free" country
for instance, i have a linux box in my house, if all these users have "vnc viewer" on their machines, they can open a connection to my ip address on a certain port and then be able to control my computer remotely as if they were sitting in front of it
this may be your best option if you only have 5-10 people in "not free" countries
now squid is a little different, connections coming out of your "not free" computers will say the URL they are connecting to, but will actually connect to your server, this may cause the government to be able to protect the connection
AHA!! better option
allright, i got what I would see as the best option i can think of
have each user (running linux) open up an SSH connection with your free country server, and have it set up to "tunnel" connections, making it invisible to the local governments
and then get your "not free" machines to tunnel a connection to your server, if they are using linux, open a terminal and type in
ssh firstname.lastname@example.org -L 3128:localhost:3128
windows users can use putty and go to the "tunnels" tab and type in
Source port: 3128
now in the users browsers, put in this for the proxy information
(change the port to whatever you tell squid to run on, defaults are either 3128 or 8080 or 80)
it should then forward connections through the SSH tunnel to your remote proxy machine, and the local government will only see an encrypted connection on port 22, nothing more
lemme know if you need any further clarification, cause i might have started rambling
Last edited by adamwenner; 01-13-2005 at 07:38 PM.
Don't worry about rambling. I've posted a few dissertations in my life, too!
I think I see how your suggestion would work, but can't their local ISP (usually their not so friendly or free government) intercept the pages that are served through to their computer?
I have a linux server in Panama, a couple in St. Vincent and several in the US. All are running redhat 7.3.
Couldn't nice person from not free machine use an encrypted connection to one in, say Panama; be relayed to another, and then to another that contains a remote browser? The last machine IP would be what is served to the server from which they request information, so there is no location of not free machine. The original https connection would serve pages to not free machine, and ISP would not be able to understand the information.
As I said in my original post, I'm a newbie. I can handle writing simple PHP and PERL scripts, but when we get to command line, I a little thick.
I really appreciate your taking so much of your time to answer my questions.
Problem is, I am a business man, not an qualified IT guy.