darkweb_service
Differences
This shows you the differences between two versions of the page.
| Both sides previous revision Previous revision Next revision | Previous revision Last revision Both sides next revision | ||
|
darkweb_service [2018/09/16 00:24] vk3smb [SSH access to your server] |
darkweb_service [2018/09/16 00:27] vk3smb [More security……] |
||
|---|---|---|---|
| Line 122: | Line 122: | ||
| {{ : | {{ : | ||
| Checking the screenshot of Orbot above, you will notice under Tor-Enabled apps, a command line looking icon. This is ConnectBot SSH. It is available from Google play as well. In Orbot, you have to enable the VPN, then click the settings icon, then select ConnectBot. | Checking the screenshot of Orbot above, you will notice under Tor-Enabled apps, a command line looking icon. This is ConnectBot SSH. It is available from Google play as well. In Orbot, you have to enable the VPN, then click the settings icon, then select ConnectBot. | ||
| - | More security…… | + | ===== More security…… |
| As you can see in the previous chapter, we can “torify” a command to allow it access through the dark web. Since we can do it, so can a hacker… | As you can see in the previous chapter, we can “torify” a command to allow it access through the dark web. Since we can do it, so can a hacker… | ||
| + | |||
| A hacker, if he gets hold of your onion address, can torify a port scanner and get it to scan the ports on your dark web server, finding an open port 22. On the clear web, a smart person would have fail-to-ban or similar installed to circumvent this after a couple of tries, and hopefully he gives up and annoys someone else, but in the dark web, everyone who attempts to connect to your dark web server looks the same to the server…. | A hacker, if he gets hold of your onion address, can torify a port scanner and get it to scan the ports on your dark web server, finding an open port 22. On the clear web, a smart person would have fail-to-ban or similar installed to circumvent this after a couple of tries, and hopefully he gives up and annoys someone else, but in the dark web, everyone who attempts to connect to your dark web server looks the same to the server…. | ||
| + | |||
| So now, we delve into keys. They have to be installed on any client that tries to access your dark web server. | So now, we delve into keys. They have to be installed on any client that tries to access your dark web server. | ||
| + | |||
| To set up authentication, | To set up authentication, | ||
| - | HiddenServiceDir / | + | < |
| HiddenServicePort 80 127.0.0.1: | HiddenServicePort 80 127.0.0.1: | ||
| - | # | + | # |
| So it becomes | So it becomes | ||
| - | HiddenServiceDir / | + | < |
| HiddenServicePort 80 127.0.0.1: | HiddenServicePort 80 127.0.0.1: | ||
| HiddenServicePort 22 127.0.0.1: | HiddenServicePort 22 127.0.0.1: | ||
| - | HiddenServiceAuthorizeClient stealth hidden_service | + | HiddenServiceAuthorizeClient stealth hidden_service</ |
| Save it, and restart TOR. | Save it, and restart TOR. | ||
| + | |||
| Now in your / | Now in your / | ||
| - | qb7burbgiso43fzv.onion N# | + | |
| + | < | ||
| It will show you the address, and the key required for you to access hidden_service, | It will show you the address, and the key required for you to access hidden_service, | ||
| + | |||
| Write the key down (it is case sensitive), as you need it put that key onto any client you wish to give access to your dark web server. | Write the key down (it is case sensitive), as you need it put that key onto any client you wish to give access to your dark web server. | ||
| + | |||
| As you have two different TOR versions on your client PC (one is installed on your PC and we use it with SSH, the other is bundled with the TOR-browser), | As you have two different TOR versions on your client PC (one is installed on your PC and we use it with SSH, the other is bundled with the TOR-browser), | ||
| + | |||
| For SSH to work, on your PC, edit the torrc file: | For SSH to work, on your PC, edit the torrc file: | ||
| - | # nano / | + | < |
| Go right down to the bottom of the file and add the following: | Go right down to the bottom of the file and add the following: | ||
| - | Rest of file… | + | < |
| HidServAuth qb7burbgiso43fzv.onion | HidServAuth qb7burbgiso43fzv.onion | ||
| + | </ | ||
| And restart TOR. | And restart TOR. | ||
| + | |||
| For your browser, you have to dig up the torrc file that comes with it. It will be somewhere like ~/ | For your browser, you have to dig up the torrc file that comes with it. It will be somewhere like ~/ | ||
| + | |||
| Add the same line to the end of the file and restart the browser. | Add the same line to the end of the file and restart the browser. | ||
| + | |||
| There it is, a secure interface to control the VK3RWO repeater, which I can access anywhere. | There it is, a secure interface to control the VK3RWO repeater, which I can access anywhere. | ||
| - | Keys on your Android Phone | + | ===== Keys on your Android Phone ===== |
| Within Orbot, you need to click the 3 dots on the top right, click Hidden Services, then Client cookies. | Within Orbot, you need to click the 3 dots on the top right, click Hidden Services, then Client cookies. | ||
| Upgrading to TOR V3 | Upgrading to TOR V3 | ||
darkweb_service.txt · Last modified: 2018/09/16 00:32 by vk3smb
Page Tools
