[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]
Re: [K12OSN] Connecting using cygwin

From: Julius Szelagiewicz <julius turtle com>
To: k12osn redhat com
Subject: Re: [K12OSN] Connecting using cygwin
Date: Tue Apr 29 16:20:01 2003
Robert,
	it would, but my business system has ssh on it and not ssl :-)

On Wed, 30 Apr 2003, Robert McDonald wrote:

> Wouldn't it be easier for your users if they use an IPSec or MS pptpd
> encrypted vpn?
>
> Let them double click the icon that says connect, then in the dialogue their
> password and username its nice, its gui its crossplatform. the cisco client
> works fine (if you use pptp windows has a built in client and it comes up on
> boot just like a normall interface.)
>
> Now they can connect to any cleartext service and are encapsulated by the
> tunnel which is ssl encrypted. So your safe. :)
>
> That would be less fiddling arround on the users end. Tho it requires a kernel
> recompile with a few options (pptpd should work on most stock kernels if you
> load the ip_gre module, but it wont have encryption without a recompile with
> the right extras)
>
> So not for the faint hearted, but its easy enough.
>
> Cheers,
>
> Rob
>
> Cheers,
>
> Rob
>
> On Wed, 30 Apr 2003 07:43, Julius Szelagiewicz wrote:
> > Petre,
> > 	I hear you about the political support for therminal change. I
> > switched to ssh and telnet over ssh by placing nice icons for connetct to
> > the main system that force ssh and by explicitly disallowing telnet from
> > the outside. On Windoze this often means a kludgy setup of opening cygwin,
> > openig an ssh connect to the server with all the nice -L options to
> > enacapsulate telnet, mail and whatever else you might want, like vnc. then
> > you fire up terminal and point to local interface with whatever port was
> > selected. You are running the "old" terminal emulator, but now the traffic
> > goes over ssh. this is how it works: 1. in cygwin:
> > ssh -f -C -L 8023:turtle:23 -l julius turtle /usr/bin/sleep 10000
> > this causes sleep command to run for 10000 seconds on system "turtle", the
> > terminal window is not opened, port 23 is translated to port 1023 on local
> > system. 2. on windoze, run the regular telnet based terminal emulator, but
> > point it to 127.0.0.1:8023. works like magic, from anywhere in the world,
> > on crappy phone lines. you can have as many -L options as you want. skip
> > -c option if you can not turn off the modem data compression.
> >
> > On Tue, 29 Apr 2003, Petre Scheie wrote:
> > > Oh, definitely use ssh with vnc if it's appropriate. (Not sure how one
> > > would do it from Windows.)  See
> > > http://www.uk.research.att.com/vnc/sshvnc.html for details.  In my case,
> > > I didn't worry about the ssh part since our users are still using telnet
> > > to get to our various unix boxen.  This is all internal traffic, and we
> > > (admins) use only ssh on boxes outside our firewall(s).  But getting a
> > > few thousand users to switch from their current terminal program to, say,
> > > putty, doesn't have enough political support.
> > >
> > > Julius Szelagiewicz wrote:
> > > > Petre,
> > > > 	may I suggest that the vnc traffic be run over ssh? Cygwin comes
> > > > with openssh, so that can be used, or any other ssh client. julius
> > > >
> > > >>You might consider setting up VNC server to be launched by inetd/xinetd
> > > >> on the LTSP server and then having the teachers use the VNC client to
> > > >> connect.  That way they get the same XDM/KDM/GDM-like login as the
> > > >> terminals, but in a window.   It's much easier to get the
> > > >> vncviewer.exe working in Windows than Cygwin: you just click on
> > > >> vncviewer.exe.   I use this setup for some Windows folks to connect to
> > > >> a Sun box.  For more info on setting this up, search google for
> > > >> 'ixvnc'; you may have to use a cached copy of Andre Moreira's page
> > > >> about it, as I can't seem to connect to it right now.  Also, you may
> > > >> want to look at my notes on what I had to do to make it work at
> > > >>http://petre.homedns.org/unix/vnc_via_inetd.html
> > > >>HTH
> > > >>
> > > >>Petre
> > > >>
> > > >>M H wrote:
> > > >>>ok, that sounds simple, and I did send an apology after turning off
> > > >>> HTML mail here. It shouldn't show up again. However, the reason for
> > > >>> using cygwin is so I can allow a few of the teachers laptops which
> > > >>> are running XP, to connect to the LTSP server wherever they are.
> > > >>> Cygwin seemed ideal. There is no sensitive data being stored on the
> > > >>> LTSP server, all of the users home directories are brought across
> > > >>> from a win2k server, so any data is nice and secure. But thanks for
> > > >>> your help and concern. Mike
> > > >
> > > > _______________________________________________
> > > > K12OSN mailing list
> > > > K12OSN redhat com
> > > > https://listman.redhat.com/mailman/listinfo/k12osn
> > > > For more info see <http://www.k12os.org>
> > >
> > > _______________________________________________
> > > K12OSN mailing list
> > > K12OSN redhat com
> > > https://listman.redhat.com/mailman/listinfo/k12osn
> > > For more info see <http://www.k12os.org>
> >
> > _______________________________________________
> > K12OSN mailing list
> > K12OSN redhat com
> > https://listman.redhat.com/mailman/listinfo/k12osn
> > For more info see <http://www.k12os.org>
>
> --
> --------------
> Robert McDonald
> NZPages.Net Web Services
> Ph: 021 1770061
> ICQ: 86984875
> http://www.nzpages.net
>
>
>
> _______________________________________________
> K12OSN mailing list
> K12OSN redhat com
> https://listman.redhat.com/mailman/listinfo/k12osn
> For more info see <http://www.k12os.org>
>
References:
- Re: [K12OSN] Connecting using cygwin
  - From: Robert McDonald
[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]