Submit Hint Search The Forums LinksStatsPollsHeadlinesRSS
14,000 hints and counting!


Click here to return to the 'Use Platypus to create apps from scripts' hint
The following comments are owned by whoever posted them. This site is not responsible for what they say.
Use Platypus to create apps from scripts
Authored by: Beernd on Nov 12, '04 12:30:36PM

One might use SSHKeyChain for this. It stores your secret key's password, and as an extra bonus it has the ability to easily dig secure tunnels for you.

By the way, are you sure your setup is secure? You connect to localhost via ssh, and then forward some ports to a remote machine. I wouldn't be surprised if forwarding would be insecure this way…
I would do something like the following:
ssh login@ssh-server.isp.com -L 10110:mail.isp.com:110
This way the connection to your isp's ssh-server is secure, and maybe the last bit from ssh-server.isp.com to mail.isp.com is not, but that's no problem.

Am I right? Anyone?

---
"Perhaps nothing is quite true, and not even that!"
Multatuli, Ideen 1



[ Reply to This | # ]
Use Platypus to create apps from scripts
Authored by: nvdingo on Nov 12, '04 12:44:06PM

no, he is not sshing into localhost.
he is sshing into the isp.
it is setup correctly.



[ Reply to This | # ]
Use Platypus to create apps from scripts
Authored by: nvdingo on Nov 12, '04 12:46:51PM

gack, scratch that.
you may be right.
not entirely sure that it is setup correctly.

he will find out if putting the public key on teh remote server in authorized_keys does NOT allow him passwordless login.
then it is definitely authenticating against the wrong ssh server



[ Reply to This | # ]
Use Platypus to create apps from scripts
Authored by: Beernd on Nov 12, '04 01:01:35PM

Yes, I'm afraid I was right: he is ssh'ing into localhost, building a secure tunnel from localhost to localhost and then an insecure tunnel from localhost to mail.isp.com, thus obtaining a false sense of security. It's just an awkward way of connecting insecurely to his isp's mail server. Any script kiddy could read his mail and steal his password…

---
"Perhaps nothing is quite true, and not even that!"
Multatuli, Ideen 1



[ Reply to This | # ]
SSHKeychain
Authored by: ssevenup on Nov 12, '04 02:18:38PM

Another vote for SSHKeychain, it's the best way to do this and invaluable for other reasons too. Having said that, Platypus (and Pashua) are very useful too. It's just the Rube Goldberg method in this case.

http://www.sshkeychain.org/

--MM

---
Mark Moorcroft
ELORET Corp. - NASA/Ames RC
Sys. Admin.



[ Reply to This | # ]