HOW TO: Securely access your webmail using SSH tunnels
I came across a number of situations where I needed to access my business e-mail from an insecure environment. I am talking about conferences, exhibitions, as well as airports and open WLAN hotspots. Majority of free e-mail providers, such as Google GMail and Yahoo! have options to login by using a https connection over secure sockets layer (SSL) or transport layer security (TLS). However, in my case, a couple of business mailboxes can be accessed via a webmail that doesn't offer any kind of encryption. The solution is pretty simple - create your own SSH Tunnel. Adobe portable document to word converter.
SSH Tunnel Manager is a free Mac OS X software that offers point and click setting up of a secure connection from your computer to your mail server. We are trying to create this kind of interaction:
When using a public network, the main potential security risk is that your interactions can be sniffed by a bad guy. In this case, we will create a totally secure connection from our notebook, over a public WLAN network to a secure remote server. This should be a trusted server where you must have an SSH account. I am emphasizing that it should be a trusted server because connection from that point to the mail server isn't encrypted. Using an SSH tunnel in this scenario isn't a full proof 100% sure solution, but it helps with the most problematic part of the transfer - bypassing the insecure public wireless network. hidden keylogger
Step 1: Download and setup the software
SSH Tunnel Manager can be downloaded from Tynsoe.org. The current stable version is 1.0.3. I came across a number of bugs while trying to get the best out of this software, but if you are using it for the stuff this article is all about, you don't have to worry about it.
In the connection setup part of the screen you need to fill in a profile name, as well as SSH and address for the trusted server. This username hasn't got anything to do with your e-mail username. We are just setting up a tunnel over which you will access your webmail. The next important thing is to setup a local port, address of your webmail and the remote port (usually port 80 as this is the default port for a web server). After setting up these things, just hit "Apply". Buy epson inkjet printer reviews in the most reliable and best and nearest e-shop with delivery
Step 2: Start the tunnel
If this following window doesn't popup automatically, do close and reopen SSH Tunnel Manager. Chose your tunnel profile (I have three of them) and hit start.
If this is the first time you are connecting with SSH to the remote server, the software will alert you that you need to accept the remote key. Just type in "yes". If you were already connecting to the server (usually over some kind of Secure FTP client or a SSH command line utility), you will just need to enter your password. If everything is OK, the previous window will refresh with a green dot just in front of your profile name.
Step 3: Access the webmail
Now you can access your webmail over a local address and port number.
The point of this SSH tunnel is that when you access http://localhost:2222 it creates a connection to http://e-mail.nonstopmac.com. By doing this you are bypassing any potential attackers that are sniffing the public network that your notebook is connected to.