/os/ - Online Security

News, techniques and methods for computer network security.

Boards | Magrathea | Catalog | Bottom

Site Announcements
Check to confirm you're not a robot
Name
Email
Subject
Comment
Password
Drawing x size canvas
File(s)
Drag files to upload or click here to select them

Remember to follow the rules

Max file size: 350.00 MB

Max files: 5

Max message length: 4096


Welcome to Online Security the place for internet and computer security, privacy and anonymity.
If you have some helpful tips please feel free to share your ideas. Start a new thread, or contribute to an existing thread.


SSH privacy Anonymous 05/11/2016 (Wed) 18:16:01 [Preview] No. 42 [Reply] [X] [Last 50 Posts]
How can I anonymously ssh into something? Going through Tor and using a freshly generated key for identification is obvious, but how can I make sure that there is no data leakage above all that? I haven't been able to find any guides on that, even though it seems like something a lot of people might be interested in doing.
2 posts omitted.Expand thread


Anonymous 05/11/2016 (Wed) 21:01:41 [Preview] No. 45 [X] del
>posting in the little retard's pet board
>captcha required

post this somewhere else if you are interested


Anonymous 10/21/2016 (Fri) 05:56:34 [Preview] No. 620 [X] del >>621
you gotta make suer your ssh deosn't show your key files to the server too


Anonymous 10/21/2016 (Fri) 12:05:39 [Preview] No. 621 [X] del
>>620
Commenting out
SendEnv LANG LC_*
can help too.

Disabling pubkey auth is important. If you have passwordless key or have key loaded in ssh-agent, option
-oPubkeyAuthentication=no
disables pubkey auth completely.

Also, there's this thing to demonstrate deanon by ssh key:
https://github.com/FiloSottile/whosthere


Anonymous 12/28/2016 (Wed) 01:52:02 [Preview] No. 748 [X] del
Finally, my almonds have been activated.


Anonymous 01/08/2017 (Sun) 19:31:59 [Preview] No. 782 [X] del
In ~/.ssh/config so you don't leak your username if you forget to specify one.
host *

user root



Non ICAAN controlled domains Anonymous 01/02/2017 (Mon) 18:30:10 [Preview] No. 760 [Reply] [X] [Last 50 Posts] >>770>>772
I have a website but I'm afraid that it won't stay up within the first year that Trump gets in. I would eventually pay for my own static IP but before then, I need to really decide on what website domains I should use that isn't too expensive. Some territorial domains have specifications as to what can and can't be done while other domains are controlled by FVEY. .is BTW, is super expensive, I was told that the price is around $500.


Anonymous 01/02/2017 (Mon) 18:33:10 [Preview] No. 761 [X] del >>770
mispelt ICANN


Anonymous 01/06/2017 (Fri) 22:33:59 [Preview] No. 770 [X] del
>>760
>>761
.is Is great, archive.is people are smart people.


Anonymous 01/07/2017 (Sat) 04:06:07 [Preview] No. 772 [X] del
>>760
Come to think of it, I think that pricing was an error on their part, should be 89 to 99 USD per year.

I wish I was Norwegian so that I can get a .no instead. Besides .no, I was thinking of .fi but then I realized that EU nations are potentially bad. .tv is under Australia but I might have to settle for that if I really don't want to pay up for .is


Anonymous 01/07/2017 (Sat) 18:42:17 [Preview] No. 774 [X] del >>781
>archive.is
NSAflare

Real answer is "onion".


Anonymous 01/08/2017 (Sun) 19:22:37 [Preview] No. 781 [X] del
>>774
agreed
or .i2p