[CentOS] two questions about ssh tunneling

Andrew Harley andrew at promed.com.au
Fri Dec 4 23:40:08 UTC 2009


On Sat, 5 Dec 2009 10:14:01 am Joseph L. Casale wrote:
> >if I:
> >
> >ssh -fND localhost:6000 somebody at 192.168.56.5 -p PORTNUMBER
> >
> >from computer "A" to computer "B" [B = 192.168.56.5] then I can set the
> > SOCKS proxy for e.g.: Firefox to use "localhost:6000" on computer "A".
> > Ok. I can surf the web through "B".
> >
> >But:
> >- Can anyone sniff the traffic of "A"? [e.g.: computers on same subnet as
> > "A"] Like DNS requests? - I think no, but I'm not sure :O
> 
> Sure, that possible if your name resolution traverses a network path
>  interceptable by the guy sniffing.
> 

You can tell firefox to use the socks proxy for DNS requests as well by typing about:config in the url bar and 
setting "network.proxy.socks_remote_dns" to true. 

-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.centos.org/pipermail/centos/attachments/20091205/8f4277ae/attachment.html 


More information about the CentOS mailing list