Author Topic: SSH to a remote server and sniffer. (Read 828 times)

hack3rcon · « **on:** October 08, 2015, 12:40:45 pm »

Hello.
If I use SSH protocol for connecting to a remote server and bypass all Internet traffics to remote server. Can server admin sniff my traffic and find my vital information?
For example I use "ssh test@testserver.com -D 127.0.0.1:8888" and change my Firefox proxy to use "127.0.0.1" and port "8888" then go to "Gmail.com" and open my email.
Can server admin find my Gmail username and password? Firefox use "HTTPS" protocol for open Gmail.com but can sniffing it possible?

Tnx.

proxx · « **Reply #1 on:** October 08, 2015, 06:58:09 pm »

Quote from: hack3rcon on October 08, 2015, 12:40:45 pm

Hello.
If I use SSH protocol for connecting to a remote server and bypass all Internet traffics to remote server. Can server admin sniff my traffic and find my vital information?
For example I use "ssh test@testserver.com -D 127.0.0.1:8888" and change my Firefox proxy to use "127.0.0.1" and port "8888" then go to "Gmail.com" and open my email.
Can server admin find my Gmail username and password? Firefox use "HTTPS" protocol for open Gmail.com but can sniffing it possible?

Tnx.

No the HTTPS tunnel goes right through the machine so no.
That is if you want to rely on SSL/TLS.
The SSL connection is established between endpoints and is not decryptable without the keys, at least thats what they tell us

Code: [Select]

|Browser|            |SSHD|              |Webserver|
|       -------------|    |              |         |
|       ================================ |         |
|       -------------|    |  SSL traf^   |         |
| _____ |SSH Layer^  | __ |              | ______  |

Cookie for my ASCII art plz

EvilZone

News:

Author Topic: SSH to a remote server and sniffer. (Read 828 times)

hack3rcon

SSH to a remote server and sniffer.

proxx

Re: SSH to a remote server and sniffer.