On Mon, Jun 15, 2009 at 12:16:22AM +0800, Zhang Weiwu wrote: > Hello. We have a great firewall that scans keywords on tcp connections' > raw data, thus I could not use my http proxy server outside of the > firewall because both direct connection to the web server and in-direct > connect to the http proxy are scanned by the firewall. > > My trick is to run 'ssh -L' and configure browser to use http proxy > server that runs on localhost, which forwards to the real http proxy > server. However runs ssh -L several times a day is against basic > principle of using computer: let computer does the repeating task. > autossh helps but it also occupies a console session which I don't like.
Are you aware of the -D option of ssh? It creates a socks proxy. Now configure your browser to use that port as sock proxy and, well, things should work :-) > > I thought about wrapping the proxy server with stunnel, but then I could > not configure Firefox to connect to http proxy using https protocol. > Then I think running autossh -L as a system service (not possible > because it doesn't detach from console). > > What would you recommend then? (TOR is already being used but hardly > acceptable for very low bandwidth it offers) We have a package that does something similar with ssh -R . http://rapid-tunneling.wiki.sourceforge.net/ Feel free to borrow the daemonizing part of http://rapid-tunneling.git.sourceforge.net/git/gitweb.cgi?p=rapid-tunneling -- Tzafrir Cohen | tzaf...@jabber.org | VIM is http://tzafrir.org.il | | a Mutt's tzaf...@cohens.org.il | | best ICQ# 16849754 | | friend -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
