[32647] in North American Network Operators' Group
Re: a privacy violation at the DC Renaissance Hotel - to all
daemon@ATHENA.MIT.EDU (Kai Schlichting)
Tue Dec 5 17:53:22 2000
Message-Id: <4.3.2.7.2.20001205174743.0359f5c0@127.0.0.1>
Date: Tue, 05 Dec 2000 17:52:45 -0500
To: nanog@merit.edu
From: Kai Schlichting <kai@pac-rim.net>
In-Reply-To: <E143PEH-00043y-00@plate.smashing.net>
Mime-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Errors-To: owner-nanog-outgoing@merit.edu
At Tuesday 04:02 PM 12/5/00, Mike Hughes wrote:
>Then, whenever I'm on my travels, I open an SSH session to my
>office network, and tunnel all web traffic through the SSH session
>to my Squid.
That's exactly what I did with all my POP3 and SMTP traffic at the
conference: built a tunnel (recent versions of the SSH module for
TeraTerm for Windows do this great!) via SSH, pop/smtp to local
loopback interface. A 5 minute thing. Even though I had a web proxy
available at the other end of that SSH-based tunnel as well, I
didn't think it was necessary: data was just not sensitive
enough for SSL, yet it was private and of certain value in the wrong
hands, and vulnerable as such when stored for extended periods of time
on someone else's harddrive. The usefulness of the VPN-spiel or
end-to-end IPSec doesn't seem so theoretical anymore.
