I was wondering, is it possible to skirt proxies and firewalls by tunneling a TCP/IP connection over HTTP? I have seen it done with DNS to tunnel in a UDP fashion that with some creative coding acted like TCP/IP and allowed access to HTTP servers that the firewalls and proxies were blocking... but that won't work for mudding.
I don't mean server relays that recieve on port 80 and then fire off to the destination on port-whatever and vice versa for responses; this is too laggy to mud on.
I've kinda thought about setting up my router at home to perform address translation and to funtion like a proxy, but that's too much work because I know someone has to have already done this...
Yes, programmers ARE lazy... that's what makes them good programmers. ;)
IP Tunneling over HTTP
-
- Sojourner
- Posts: 262
- Joined: Wed Oct 31, 2001 6:01 am
- Location: Oakville, ON, CA
- Contact:
Yes you can do it, its one of the many tricks used by beginning hackers to try to mask their trail. You incur more packet overhead from having to use the protocols for http however. I'm not a programer, so I'm not going to write the code to do this because I hate programming unless its in assembly for microcontrolers. :P
You can always use the mcclient program that does the mud compression protocol. That works exactly as a proxy server program.
You can always use the mcclient program that does the mud compression protocol. That works exactly as a proxy server program.
mudding from work with telnet disabled
ok i'm not sure if this applies to me.. but it seems like this post might.. is there any way for me to mud from work.. the administrator has apparently disabled telnet.. it says that a connection cant be made.. but email and web browsers work fine.. i can also download and install programs..
i saw that on mudconnector it loads up like a telnet emulator to connect you.. is this how you can do this? i mean there must be a way to log on through IE or something no?
if you know how to do this pls tell me exactly how.. i dont have too much experience with this stuff.. so i may not know exactly what your talking about unless your speaking in laymans terms :) thanks
i saw that on mudconnector it loads up like a telnet emulator to connect you.. is this how you can do this? i mean there must be a way to log on through IE or something no?
if you know how to do this pls tell me exactly how.. i dont have too much experience with this stuff.. so i may not know exactly what your talking about unless your speaking in laymans terms :) thanks
one soloution
What you may want is http://www.nocrew.org/software/httptunnel.html. You'd use this to tunnel out (potentially via your work's http proxy) to a computer you have running somewhere else (your router at home?), which is running a server process that forwards the connection to the mud.
On your home machine, you'd run something like
Then on your client machine, you'd run
or even, if you have a proxy at work,
Now, if you point your client (zmud or whatever) at localhost:23 (the default telnet port), it should tunnel out to your home machine (via the proxy if configured) and on to the mud.
Note: this is a generally bad idea if your work do not allow connections outbound. Because it is a plain text connection, the administrator of your firewall/proxy CAN SEE EVERYTHING YOU TYPE INCLUDING YOUR USERNAME AND PASSWORD.
Another option is to use stunnel http://www.stunnel.org/. This performs the same function as httptunnel, but uses an encrypted SSL connection. It can still go through a proxy (although it needs to be an https proxy). This is probably more sensible - however, network adminstrators do tend to take an interest in long term https connections too. Again, I do not condone your trying to break out of your work restricted firewalls, if you get fired don't come running to me.
Personally, I'm paranoid. My work actually allows outbound mud traffic without a problem. But I use an stunnel to connect the ssh port of my home linux machine, make an ssh connection via the stunnel, and then either forward ports via the ssh connection to the mud machine or have a mud client running in a screen session. Unix is magic :-)
-thalash
On your home machine, you'd run something like
Code: Select all
hts -F torilmud.org:9999 80
Then on your client machine, you'd run
Code: Select all
htc -F 23 my.home.machine:80
or even, if you have a proxy at work,
Code: Select all
htc -P my.proxy.machine:80 -F 23 my.home.machine:80
Now, if you point your client (zmud or whatever) at localhost:23 (the default telnet port), it should tunnel out to your home machine (via the proxy if configured) and on to the mud.
Note: this is a generally bad idea if your work do not allow connections outbound. Because it is a plain text connection, the administrator of your firewall/proxy CAN SEE EVERYTHING YOU TYPE INCLUDING YOUR USERNAME AND PASSWORD.
Another option is to use stunnel http://www.stunnel.org/. This performs the same function as httptunnel, but uses an encrypted SSL connection. It can still go through a proxy (although it needs to be an https proxy). This is probably more sensible - however, network adminstrators do tend to take an interest in long term https connections too. Again, I do not condone your trying to break out of your work restricted firewalls, if you get fired don't come running to me.
Personally, I'm paranoid. My work actually allows outbound mud traffic without a problem. But I use an stunnel to connect the ssh port of my home linux machine, make an ssh connection via the stunnel, and then either forward ports via the ssh connection to the mud machine or have a mud client running in a screen session. Unix is magic :-)
-thalash
sounds cool but...
hmm all this sounds great.. but i have no clue what your talking about :) where do i put those lines in that you typed in there.. and how do i set this up on my home machine? :P
dunno
dont seem to be able to get it to work.. as far as i know i forwarded my router to my comp.. put in those lines like you said.. etc.. but i dunno.. hmm think if i use like pcanwhere or something ilke that to control my home computer it will work? will it let pcanywhere past the firewall?
Who is online
Users browsing this forum: No registered users and 14 guests