Thread: Using SSH for the IHUB
View Single Post
  #7 (permalink)  
Old 06-22-2009, 07:20 AM
sodusme's Avatar
sodusme sodusme is offline
Security/Networking Guru
  

Join Date: Nov 2006
Location: No where near you
Posts: 998
Thanks: 409
Thanked 512 Times in 264 Posts
Quote:
Originally Posted by magic4 View Post
This already proven to work well. There's offshore SSH tunnel site you should use, very fast and reliable. Ihub works well with SSH tunnel. Bitvise opened a SSH tunnel to the offshore site then you will use Tor proxy software to proxy inside the encrypted tunnel, then the blackRock custom software will route the Ihub traffic through the Tor proxy and inside the SSH tunnel to Ihub server. ISP can not see what's going on inside the tunnel. Nfusion used ENCRYPTED UDP package no send data to IKS server, inside the UDP package there's ip address and data, but since the package is encrypted, ISP can not see that you're connect to IKS server proxy or not. The theory about UDP is there is to end to end tracking like TCP package where you have source and destination handshake. This can be easily trace. UDP send the package and not waiting for destination's respond. Nfusion will send an encrypted udp package to a proxy server A and received respond from another proxy server B. So using UDP encrypted package is impossible to trace. If ISP can decrypted the package, the trace is also very differcult. They have to have network sniffer on every gateway to follow the package.
If I'm reading and understanding this correctly which I'm sure I am this is a 3-part deal. You need "blackrock" (which is available here) you need "tunnelier" (which is available here-or similar ssh "client") AND you need a ssh server which as I see it at this point is not available here. Someone needs to post this "offshore tunnel site" with the username/password then so these people can get up and running. Without an ssh server to connect to you are not going to get this to work. Magic4 when you say "offshore tunnel site" I'm assuming you mean the ssh server? Please post it then if you have it...

I don't want to turn this into an Nfusion discussion but UDP is not any safer then TCP. There are differences in the traffic but as far the encryption being "impossible to trace"....keep dreaming. I've said it a million times and now I'll say it a million and one....look up DPI (Deep Packet Inspection) my friend....your isp can trace ANY packet whether its UDP or TCP makes no difference. UDP does not give a handshake true, UDP does not care if the packet arrives true, UDP gets the packets there in no particular order true, UDP is more secure false....with todays technology your isp can spy on ANY packet on their network. I'm not sure who from the Nfusion camp keeps putting out this dribble and it is dribble but they need to do some more reading.
Reply With Quote