Delivery-Date: Mon, 16 Feb 2015 17:56:52 -0500
Return-Path: <tor-talk-bounces@lists.torproject.org>
X-Spam-Checker-Version: SpamAssassin 3.3.1 (2010-03-16) on moria.seul.org
X-Spam-Level: 
X-Spam-Status: No, score=-4.1 required=5.0 tests=BAYES_00,DKIM_SIGNED,
	RCVD_IN_DNSWL_MED,T_DKIM_INVALID,URIBL_BLOCKED autolearn=ham version=3.3.1
X-Original-To: archiver@seul.org
Delivered-To: archiver@seul.org
Received: from eugeni.torproject.org (eugeni.torproject.org [38.229.72.13])
	(using TLSv1.2 with cipher ADH-AES256-GCM-SHA384 (256/256 bits))
	(No client certificate requested)
	by khazad-dum.seul.org (Postfix) with ESMTPS id 808341E0FD1
	for <archiver@seul.org>; Mon, 16 Feb 2015 17:56:50 -0500 (EST)
Received: from eugeni.torproject.org (localhost [127.0.0.1])
	by eugeni.torproject.org (Postfix) with ESMTP id 8222C335C6;
	Mon, 16 Feb 2015 22:56:46 +0000 (UTC)
Received: from localhost (localhost [127.0.0.1])
 by eugeni.torproject.org (Postfix) with ESMTP id E298E3308B
 for <tor-talk@lists.torproject.org>; Mon, 16 Feb 2015 22:56:42 +0000 (UTC)
X-Virus-Scanned: Debian amavisd-new at 
Received: from eugeni.torproject.org ([127.0.0.1])
 by localhost (eugeni.torproject.org [127.0.0.1]) (amavisd-new, port 10024)
 with ESMTP id QbOlp4FxvgUy for <tor-talk@lists.torproject.org>;
 Mon, 16 Feb 2015 22:56:42 +0000 (UTC)
Received: from vincent.hireahit.com (vincent.hireahit.com [23.19.120.58])
 (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits))
 (Client did not present a certificate)
 by eugeni.torproject.org (Postfix) with ESMTPS id CB5B932D2D
 for <tor-talk@lists.torproject.org>; Mon, 16 Feb 2015 22:56:42 +0000 (UTC)
Received: from VINCENT.hireahit.com by hireahit.com (vincent.hireahit.com)
 (SecurityGateway 3.0.2) with ESMTP id SG001692586.MSG 
 for <tor-talk@lists.torproject.org>; Mon, 16 Feb 2015 14:56:40 -0800
DKIM-Signature: v=1; a=rsa-sha256; c=simple; d=hireahit.com;
 s=MD-20140321; t=1424127398; x=1424732198; q=dns/txt; h=Message-ID:
 Date:From:User-Agent:MIME-Version:To:Subject:References:
 In-Reply-To:Content-Type:Content-Transfer-Encoding; bh=Bf9bJetBv
 U85sJYpQJ4yYKiExLgzbR3h2dWzCL1WnjE=; b=iVtuuXRD3FiEqKCKE8GKhSFGe
 236R7C+AZ6xxgj+5KBYvjdl99Pa/8A83T72uWx7VceBuQKLVga5iHL/xDeeTLvKf
 N0o0X/TN8uj5c53y5D+k9nSwwrO3R0+uOEam3/kT10+cDYaEb1C78OeSW4XpNCJJ
 nm5wN3I0NIX8mGqve0=
Received: from [x.x.x.x] (184.68.44.226) by VINCENT.hireahit.com (23.19.120.58)
 (Cipher TLSv1:AES-SHA:256) (MDaemon PRO v15.0.0e) 
 with ESMTPSA id 22-md50000016510.msg for <tor-talk@lists.torproject.org>;
 Mon, 16 Feb 2015 14:56:38 -0800
X-MDRemoteIP: 184.68.44.226
X-MDArrival-Date: Mon, 16 Feb 2015 14:56:38 -0800
X-Authenticated-Sender: davew@hireahit.com
X-Return-Path: davew@hireahit.com
X-Envelope-From: davew@hireahit.com
X-MDaemon-Deliver-To: tor-talk@lists.torproject.org
Message-ID: <54E275A2.1000504@hireahit.com>
Date: Mon, 16 Feb 2015 14:56:34 -0800
From: Dave Warren <davew@hireahit.com>
User-Agent: Mozilla/5.0 (Windows NT 6.3; Win64; x64;
 rv:24.0) Gecko/20140623 FossaMail/24.6.0
MIME-Version: 1.0
To: tor-talk@lists.torproject.org
References: <ff0969f9d2ea5c294f866c4660ebb309@openmailbox.org>
 <54E13B37.8070004@riseup.net> <54E1567A.90709@hireahit.com>
 <c0e17374bc441f241698b7109078ec67@openmailbox.org>
In-Reply-To: <c0e17374bc441f241698b7109078ec67@openmailbox.org>
Subject: Re: [tor-talk] Tor over SSH (torsocks) (?)
X-BeenThere: tor-talk@lists.torproject.org
X-Mailman-Version: 2.1.15
Precedence: list
Reply-To: tor-talk@lists.torproject.org
List-Id: "all discussion about theory, design,
 and development of Onion Routing" <tor-talk.lists.torproject.org>
List-Unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-talk>, 
 <mailto:tor-talk-request@lists.torproject.org?subject=unsubscribe>
List-Archive: <http://lists.torproject.org/pipermail/tor-talk/>
List-Post: <mailto:tor-talk@lists.torproject.org>
List-Help: <mailto:tor-talk-request@lists.torproject.org?subject=help>
List-Subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk>, 
 <mailto:tor-talk-request@lists.torproject.org?subject=subscribe>
Content-Transfer-Encoding: 7bit
Content-Type: text/plain; charset="us-ascii"; Format="flowed"
Errors-To: tor-talk-bounces@lists.torproject.org
Sender: "tor-talk" <tor-talk-bounces@lists.torproject.org>

On 2015-02-16 03:30, blobby@openmailbox.org wrote:
> On 2015-02-16 02:31, Dave Warren wrote:
>> On 2015-02-15 16:35, Mirimir wrote:
>>> On 02/15/2015 02:22 PM, blobby@openmailbox.org wrote:
>>>> I want to login to my VPS over SSH.
>>>>
>>>> Is torsocks still a safe way to do this? A lot of the documentation
>>>> (such as it is) is several years old.
>>> I prefer to run an SSH hidden service on the VPS.
>>
>> I'd tend to agree; if you control the endpoint, set it up as a hidden
>> service rather than having Tor exit node involved at all.
>>
>> While running hidden services alongside non-hidden services introduces
>> some risks, most of these are less significant when connecting to SSH
>> on a server that you control.
>
> I don't think I phrased my question very well. I'm not running a 
> hidden server. I'm just logging in to a shared VPS to ftp. etc, rather 
> than logging in to a control panel over HTTPS.
>
> I just want a simple way to do "ssh IP port" but with Tor.

Understood. But the suggestion is that you SHOULD run a hidden server to 
listen for SSH connections over Tor as this will be far more reliable 
and secure than having to rely on an exit node.

The rest of the server doesn't need to be a hidden server, and SSH can 
still listen as both a Tor hidden server and a regular public server, 
but by making it a hidden server within Tor, you remove one of the major 
risk factors of using Tor: The exit node.

-- 
Dave Warren
http://www.hireahit.com/
http://ca.linkedin.com/in/davejwarren


-- 
tor-talk mailing list - tor-talk@lists.torproject.org
To unsubscribe or change other settings go to
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk

