LinuxQuestions.org

LinuxQuestions.org (/questions/)
-   Linux - Security (https://www.linuxquestions.org/questions/linux-security-4/)
-   -   Can I hide the ip address and port of my sshd connection? (https://www.linuxquestions.org/questions/linux-security-4/can-i-hide-the-ip-address-and-port-of-my-sshd-connection-743978/)

CoffeeKing!!! 07-30-2009 01:53 PM

Can I hide the ip address and port of my sshd connection?
 
Hi
When using lsof -i on my server, I can can get the IP address and port number of a clients ssh connection. Is there a way that the client could avoid giving up this information without using proxies?

karamarisan 07-30-2009 02:04 PM

Not really. How would your ssh server know where to send the packets that make up its half of the connection if it didn't know the IP and port from which the client was connecting?

akiku 08-09-2009 11:58 AM

Quote:

Originally Posted by karamarisan (Post 3625828)
Not really. How would your ssh server know where to send the packets that make up its half of the connection if it didn't know the IP and port from which the client was connecting?

Actually there is, by using Tor. See http://www.debianadmin.com/tag/ssh-tor-anonymous

karamarisan 08-09-2009 06:26 PM

You're not considering Tor a proxy?

unixfool 08-09-2009 07:31 PM

Tor won't hide it. It will obfuscate it. If you did this from a workplace environment, it would stand out. We usually watch for all Tor and even SSH connections, even on non-standard ports. Tor is an anonymizer, but it won't hide any service ports. You can't hide any service ports that you want open to client software, but you can harden them. There's a forum sticky on hardening the SSH service at http://www.linuxquestions.org/questi...tempts-340366/. and be careful, because most corporate policy frown upon using SSH to connect out of their networks. Some even terminate people for doing this. It is much harder to hide than you think (I've tried and been reported). For some people, this may not hinder them, but in the US economy, this is a bad time to be getting fired.

Just my 2 cents.

unixfool 08-09-2009 07:40 PM

Quote:

Originally Posted by karamarisan (Post 3637070)
You're not considering Tor a proxy?

LOL. I was thinking the same thing.

akiku 08-09-2009 07:45 PM

Evidently I skipped over that prerequisite.
CoffeeKing!!!, is there a particular reason you need to avoid using a proxy?
Tor is specifically designed to do what you want.

CoffeeKing!!! 08-10-2009 02:06 PM

Quote:

Originally Posted by akiku (Post 3637137)
Evidently I skipped over that prerequisite.
CoffeeKing!!!, is there a particular reason you need to avoid using a proxy?
Tor is specifically designed to do what you want.

I don't want to avoid using a proxy, I was just wondering if ssh or linux had some built in ways to connect a ssh session without giving up port and ip addr info. I was exploring lsof and seeing that information grabbed my curiosity. I didn't even know that Tor and ssh could be used together. I'm glad that I asked my original question here and have gotten all this info. Thanks for taking the time to answer, folks.


All times are GMT -5. The time now is 10:43 AM.