Tag Archives: command line

Encrypting your home area for backup with Openssl | using openssl to encrypte and automate your backups to fileserver

Im currently running a Linux desktop, the other day the disk become corrupt and I lost my home area. Not a big problem as I dont store much data, but I lost all my ssh keys, configs etc. It took a few days to recover.

In an effort to stop that from happening again I want to backup all my data to the company file server, but I dont want them to have access to my keys and configs ect.

So I have scripted a backup which will encrypt on the fly. Through it into cron and you have a daily backup.

This is the command you run to create backup, notice the password is in the command. This is allow for automated backups using Cron.

And the following command is to run a restore, once executed you will be prompted for the password.

 

 

Hacking your way out of corporate networks. | bypassing corporate networks with ssh proxy corkscrew

Most corporate networks have implemented some tight security, especially around their outbound connections.

So connecting to your home Linux box over SSH is a “no-no”

Usually corporations have two services they cannot block, HTTP and HTTPS (port 80 and 443) . But they can control them via URL filtering, this does not really affect us for this exercise.

To start off with, on your home router ensure you have a rule forwarding all 443 (https) traffic to your linux box on port 22. This way, if you work is monitoring connections it doesn’t stick out like dogs balls!

Im most cases this may be enough to get you connected, that is if they dont redirect the HTTPS traffic though a proxy server.

Try

If you still cant connect, do this.

On your ubuntu box,

The corkscrew help screen looks like this

you can test corkscrew by doing the following

When you see “SSH-2.0” or something similar you can be sure that you are talking to the other end.

Ok now you’ll need to configure your SSH configuration file, located in ~/.ssh/config , if its not there create it. By default the ssh client looks there first before establishing ssh connections.

Edit the file like this

Paste something like this

So,  here is a description of the listed variables

home = pick any name, once file is save this is the hostname you will ssh to.

hostname = this is the IP address of your home router

port = this is the port we changed on the router, 443 recommended

user = the username on your home system

proxy = this is where you enter your proxies ip and port.

Once all this is finished and saved, just enter the following.

This will ask you for a password and should be in!