TechEcho

12 comments

If you already have OpenSSH installed, it has a built-in tunnel you can activate with a single command-line argument that exposes a SOCKS server on localhost.

评论 #20491836 未加载

评论 #20491756 未加载

majkealmost 6 years ago

I'm very impressed with the blog. At least one post a month for ten years? Whoa. Impressive.

regecksalmost 6 years ago

jedisct1 sure is prolific with all these lean and friendly crypto-related applications.dnscrypt-proxy, libsodium, libhydrogen, minisign, dsvpn, probably others I've never heard of.

评论 #20491049 未加载

评论 #20490504 未加载

hoschiczalmost 6 years ago

This is exactly what I have been looking for. One executable, symmetric keys and any port I want.TCP is sometimes a must (library Wi-Fi that supports only known ports). But UDP is (i think?) better for wrapping TCP traffic.

评论 #20491300 未加载

ahnickalmost 6 years ago

Does this provide some benefit over a Wireguard setup? (<a href="https://www.wireguard.com/" rel="nofollow">https://www.wireguard.com/</a>)

评论 #20490278 未加载

kbodyalmost 6 years ago

Even simpler for some use cases:`ssh -D 1080 -C -q -N root@your-vps`

评论 #20491372 未加载

antoinealbalmost 6 years ago

So correct me if I am wrong but this is doing IP in TCP right ? Iirc, this is a big issue for tcp flow control, which relies on packet loss to detect congestion: as you encapsulate stuff in tcp stream, there will be no more packet loss and the tunelled tcp will not throttle correctly.Did not read the code yet, so maybe there is something to simulate congestion packet loss.

评论 #20490550 未加载

评论 #20490565 未加载

galapagoalmost 6 years ago

Does this provide some benefit over Algo? (<a href="https://github.com/trailofbits/algo" rel="nofollow">https://github.com/trailofbits/algo</a>)

评论 #20491555 未加载

grenoirealmost 6 years ago

Pretty damn cool, but I can't see this giving you much in way of anonymity. Yet, should be all fine for getting through to region-locked DRM content.

评论 #20490105 未加载

评论 #20491056 未加载

acqqalmost 6 years ago

What are the implications of:<a href="https://eprint.iacr.org/2019/447" rel="nofollow">https://eprint.iacr.org/2019/447</a>"Practical Key-recovery Attacks on Round-Reduced Ketje Jr, Xoodoo-AE and Xoodyak"?As far as I understand round-reduced doesn't have to mean all rounds are broken, but it is still something to think about.

评论 #20494174 未加载

armitronalmost 6 years ago

DSVPN does not seem to support PFS [1] which would immediately disqualify for any purpose for me.[1] <a href="https://en.wikipedia.org/wiki/Forward_secrecy" rel="nofollow">https://en.wikipedia.org/wiki/Forward_secrecy</a>

评论 #20493585 未加载

评论 #20492837 未加载

tmd83almost 6 years ago

I don't really understand network much. > dsvpn server /root/vpn.key auto 443 auto 10.8.0.254 10.8.0.2So what does those last two ip means? Similarly for the client.

评论 #20494252 未加载

12 comments

TazeTSchnitzelalmost 6 years ago

If you already have OpenSSH installed, it has a built-in tunnel you can activate with a single command-line argument that exposes a SOCKS server on localhost.

评论 #20491836 未加载

评论 #20491756 未加载

majkealmost 6 years ago

I'm very impressed with the blog. At least one post a month for ten years? Whoa. Impressive.

regecksalmost 6 years ago

jedisct1 sure is prolific with all these lean and friendly crypto-related applications.dnscrypt-proxy, libsodium, libhydrogen, minisign, dsvpn, probably others I've never heard of.

评论 #20491049 未加载

评论 #20490504 未加载

hoschiczalmost 6 years ago

评论 #20491300 未加载

ahnickalmost 6 years ago

Does this provide some benefit over a Wireguard setup? (<a href="https://www.wireguard.com/" rel="nofollow">https://www.wireguard.com/</a>)

评论 #20490278 未加载

kbodyalmost 6 years ago

Even simpler for some use cases:`ssh -D 1080 -C -q -N root@your-vps`

评论 #20491372 未加载

antoinealbalmost 6 years ago

评论 #20490550 未加载

评论 #20490565 未加载

galapagoalmost 6 years ago

Does this provide some benefit over Algo? (<a href="https://github.com/trailofbits/algo" rel="nofollow">https://github.com/trailofbits/algo</a>)

评论 #20491555 未加载

grenoirealmost 6 years ago

Pretty damn cool, but I can't see this giving you much in way of anonymity. Yet, should be all fine for getting through to region-locked DRM content.

评论 #20490105 未加载

评论 #20491056 未加载

acqqalmost 6 years ago

评论 #20494174 未加载

armitronalmost 6 years ago

评论 #20493585 未加载

评论 #20492837 未加载

tmd83almost 6 years ago

I don't really understand network much. > dsvpn server /root/vpn.key auto 443 auto 10.8.0.254 10.8.0.2So what does those last two ip means? Similarly for the client.

评论 #20494252 未加载

Dead Simple VPN

12 comments

Dead Simple VPN

12 comments