Slashdot Mirror

I am a strong believer in F/OSS. Not only do I run it, but I contribute code and money (I also submit bug reports, patches, contribute answers to forums, and am an advocate of F/OSS to my peers). In short, I drink the Kool-Aid. I use only Linux and FreeBSD on machines I own (and I bought the machine on my desk at work, so I can use it there). I am a zealot. I think that an all (or mostly) F/OSS stack is something to strive for & that a lot of F/OSS software does work better on a free OS (usually because that is what the developers write it for & where it gets the most complete and knowledgable testing).

That being said, I do still sometimes have to use Windows & I am happy to have F/OSS on that platform. I patch my own code to work around bugs that only impact Windows users & I have financially supported projects on that platform. I have even given money to good F/OSS software which is only on that platform. I am certainly not alone. Just look at the top projects on sourceforge. Most run on Windows. Some run only on Windows.

So...some of the best Windows-only/Windows-mostly F/OSS:
Filezilla--great (S)FTP client/server. Hopefully a *nix port soon.
7-zip--excellent compression software. p7zip is there for the rest of us, but updates take a while to reach us.
PuTTYFor your ssh/scp/sftp needs.

I've given money to these projects & carry them around on a USB key (along with Thunderbird, Firefox, and vim). Cygwin is another handy thing to have if you have to be on win32 for very long.

SSH Secure Shell

Umm, do you have something against PuTTY? It works quite well and is under the MIT licence.

You Slashdotted PuTTY! You bastards!

Not mentioned: the PuTTY terminal emulator and ssh client, which lets you connect from your Windows box to some other system and so get some work done...

It also includes an scp implementation so you can securely transfer files between your Windows system and Unix boxes.

(Perhaps a niche market, but XKeymacs is useful for Emacs junkies stuck with Windows applications... there's also the Windows ports of GNU Emacs and XEmacs of course.)

If you want a dedicated terminal emulator replacemet for the truly sorry Windows telnet and HyperTerminal programs, Simon Tatham's PuTTY is an excellent choice. It also includes a solid scp (secure copy/ftp) client.

Cygwin in particular is what keeps me from chucking the whole thing and running Linux. I get all the command line scripting and Unix-like tools without the bother of having to figure out how to make my employer's mail client work on Linux.

... PuTTY

You probably won't need a scope at every station, just put it on a cart. Alternately, you might want to have one of these on every bench. That said, with bus speeds moving into the 400MHz range, it'll be hard to find an affordable scope that will trigger that fast.

Me, I just stick with my 547, but then again, I'm not a real tech....

It's time to pick up the baton and run with it

Itm was some UNIX guy.

--grendel drago

Not really.

... I expect THE MOON ON A STICK!

http://www.chiark.greenend.org.uk/~sgtatham/moon-o n-stick.jpeg

http://www.chiark.greenend.org.uk/~owend/free/bnet d.html
Someone needs to keep working on bnetd in a country not affected by the draconian DMCA

My word... PuTTY my friend, get this person some PuTTY!

If the public internet cafe you are using allows external computers to connect to their lan, such as bringing in your laptop, then try ssh tunneling to protect your content. Google defines ssh tunneling as "The process of taking any networkable connection between two hosts and channeling the information through the SSH session by encapsulating the private data inside of ordinary (usually encrypted) TCP/IP SSH packets. These connections may be arbitrary TCP/IP ports, X11 connections, or even email, allowing for features like encryption and compression for normally unsecure communication." To setup your own ssh server, install OpenBSD(http://www.openbsd.org/ or get OpenSSH for Windows(http://sshwindows.sourceforge.net/). A good ssh client is PuTTY(http://www.chiark.greenend.org.uk/~sgtatham/ putty/). Another, easier alternative is to use an encrypted vnc connection, such as RealVNC(http://www.realvnc.com/ and just use your home computer from on the go. This would allow you to use your home computer from another computer to get past a packet logger on the internet cafe's lan. If the internet cafe doesn't allow external computers on their lan, the only way to keep your data secure for sure is to not access any sensitive material when using their computers, such as everyone else has already said.

The Putty SSH client allows you to specify proxy settings. If you need a CLI, you can use Plink from the same set of tools.

http://www.chiark.greenend.org.uk/~sgtatham/putty/

They go directly from Smalltalk/PARC to Apple/LISA as if nothing happened in between. There actually were a decent number of GUI/windowing systems in the late 70s / early 80s, and a number of pre-X attempts at making a UNIX GUI, that time has totally forgotten. PERQ is the only one I can seem to find evidence of the existence of on Google offhand. If you can somehow find a copy of the book containing this history of GUIs written in 1986, it's rather fascinating...

• sshd / ssh access on a machine "at work" (preferably, don't use port 22)
• Install rabbit
• Tunnel the port 9666 to your browsing machine

This could be quite useful if you connect via GPRS and pay data by the megabyte... or if you're travelling to an unfriendly country and don't want unfriendly people to snoop on your browsing habbit.

I have used this program before to make "secure" point to point voice calls with friends.

http://www.speakfreely.org/

How hard can it be to encrypt packets? How hard can it be to tunnel the VoIP through an SSH tunnel?

So, my free solution here would be to install OpenSSH (yes there is one for windows and its free) and putty. Then you just redirect the port of the VoIP thing and that's it. You just have another setup like that in the other end.

http://sshwindows.sourceforge.net
http://www.chiark.greenend.org.uk/~sgtatham/putty/

Now for a commercial SSH tunnel, use Tunnelier.
http://www.bitvise.com/products.html

Now, I know that in government or any private company or industry money MAY BE a limitation... This is cheap and it has good licensing schemes, so no "buts."

Your IP phones are belong to us... (the unencrypted ones at least) get it?

Have a good one.

Look at the way the author of PuTTY uses multiple keys for signing.

ssh -L 8888:localhost:80 bobshost.mydomain.com

ssh -L 8765:gmail.google.com:80 bobshost.mydomain.com

Putty for SSH
http://www.chiark.greenend.org.uk/~sgtatham/putty/

CTRL-CAPS Lock Switcher
http://www.sysinternals.com/ntw2k/source/ctrl2cap. shtml

Have you seen this?
"My Experiences with Subversion"

It's by the guy who runs the PuTTY project who moved to Subversion. Not sure if this covers or even solves any of the issues you found, but hopefully if problems like this are described in such detail, then maybe the SVN devs will be able to respond!!

OTHERWISE...

I very heavily use my thumb drive on school/library pubic systems, and have an allmost entirely different set of programs i use:
For AIM:
TerrAIM ,sure its ugly, but it works a lot better than miranda
For IRC:
Dana I acutally use this little IRC client whenever im in windows, even on my own machines. very light and fast.
For Remote:
Both RealVNC and PuTTY
My favorive text editor:
Notepad++
And a number of tools from DS Software Notably TaskKill.

To bypass censorship and get around a restrictive firewall blocking you from browsing certain web sites all you need is a shell account that is accessable via ssh on a machine that has a free and open connection. This could be another machine that you own, a friend's machine or even an account rented from an ISP. An example ISP offering shell accounts would be Panix. I'll use them for the rest of this example as I have a shell account with them and hence can easily test the example setup.

All you need to do is make use of dynamic port forwarding to simulate a SOCKS proxy. Here is how you would do it.

1. Make a ssh connection to the remote machine using dynamic port forwarding. (If the standard ssh port [22] is blocked then some accounts, such as Panix, will allow a ssh connection on another port, such as 80 or 443). For example, on a Windows machine I could connect to Panix by entering the following on the command line:

   putty -ssh -D 4096 -P 80 shell.panix.com

   In case you are not familiar with Putty* and its command line options I will break that down for you:

   -ssh Use the ssh protocol -D 4096 Use dynamic port forwarding with 4096 as that port. (You could use any port number you like that is not already in use on your machine). -P 80 Connect to the server on port 80 (this part may not be needed or your remote machine may not support it) shell.panix.com The server you are connecting to. In this example the panix shell server.

   Note 1: You can also use the Putty graphical user interface. You do not need to use the command line! Once you have started Putty you can get to the port forwarding section via Connection -> SSH -> Tunnels. Then type 4096 (or any other suitable port number) in the Source Port box, click the Dynamic radio box and click the Add button.

   Note 2: If you are using Linux or MacOS/X you could use OpenSSH as follows: ssh -D 4096 -p 80 shell.panix.com

2. In a browser that supports SOCKS proxies, go into the proxy configuration page and specify localhost and the port you dynamically port forwarded (in this example 4096). All traffic is now routed through Panix.

   For example, in Firefox you can access the proxy settings here: Tools -> Options -> General -> Connections Settings. Then select the radio button for Manual proxy configuration. In SOCKS Host enter: localhost and in Port enter: 4096

*Putty is a free/open source telnet/ssh client for Windows. Here is the home page. All of the above can also be configured by the Putty GUI and saved as a 'session' if you prefer.

>For example, I've got my own wildcard domain -- anything at this domain goes to me.

You mean this link?

There's an excellent FTP client that does everythign you need: psftp. It's highly scriptable, and scripting info is available here.

A very interesting read. The Dunkels interview is also very good, this guy seems to be doing some very interesting things.

Until the great-grandfather (my original post's father) mentioned it, I'd never heard of it. I've went to the PuTTY download page and they do not mention a European version. Since it was made in England (I'm assuming), I do not think that any of the US laws apply to it (i.e., AFAIK, the US laws regarding cryptography limit cryptography techniques in the US leaving the US, not vice-versa, or at least that used to be the case).

I think the argument was against the AC's tone and attitude more than it was about the actual fact of the matter.

The thing is, as you say, even without having coding knowledge you can help fix bugs, if you take the time to know how to report bugs effectively. A good, well thought out bug report is probably the most important factor in helping to get bugs fixed, short of knowing the actual language itself.

Trust me, it's like a breath of fresh air when I see good bug reports.

I will definitely miss that loading time (of approx. 2 minutes) of Acrobat Reater and that invaluable information on those 4573 (or something) patents that they have for one document reader software!

Use Ghostscript then. The GSview graphical interface is available for Windows, OS/2 and Linux (though I personally prefer gv there). It supports PDF and Postscript formats (PS, EPS, etc.), and can display, print and easily convert between them, and even convert them to raster formats, so it is actually much more useful than Acrobat Reader, while being much less bloated at the same time. Ghostscript and GSview are always present on my CDs with useful Windows software, along with OpenOffice.org (which can save as PDF, nota bene), AbiWord, Firefox, ClamWin and PuTTY, to name just a few. If you work with serious printing, Ghostscript is a must.

I had a simple solution to all the filtering/monitoring that went on there. I have a colocated server (replace with a linux box on a cable modem if necessary) which I SSH'd to and tunnelled. Although you could port forward anything you wanted, if you run windows you can just use PuTTY. It has a nice feature they call "dynamic" port forwarding. It just sets up a local socks proxy which tunnels through the SSH session. Just set your applications to use it as a proxy...I could use IE, Kazaa, etc. I could get at anything I wanted, and they couldn't snoop.

Foobar2000 (audio player)
Miranda (instant messenger)
PuTTY (telnet/ssh client. but if you didn't know _that_, then you really have no business being here.) :P

There is Cygterm, that allows you to use almost any native Windows terminal emulator to connect to a Cygwin shell instead of the default "DOS" box.
I know that TeraTerm works well under Cygterm, because I use it myself. And it appears that PuTTY does as well.

There's an excellent (imho, of course) native-Windows ssh client called putty - take a look at http://www.chiark.greenend.org.uk/~sgtatham/putty/ . Obviously that doesn't provide an X server, etc, but if ssh access is all you require, it'll work just fine.

I grabbed it, used md5sums (link found here), got the md5:

237ee99dc7f35d2e2c0a8640086167bf

looks like the exe is safe, but as said, you can md5 it yourself.

At some point iDEFENSE will presumably post an advisory, but in the meantime, here's the PuTTY team's take: http://www.chiark.greenend.org.uk/~sgtatham/putty/ wishlist/vuln-ssh2-debug.html

While the file is on the download page http://www.chiark.greenend.org.uk/~sgtatham/putty/ download.html there is no notice of the security flaw... anyone know anything about this?

Overall I like TightVNC the best. I have used it in a variety of situations, the most challenging of which was having my aunt install the VNC server on her 33.6k modem-connected PC, so I could fix her spyware problems from abroad. That experience showed me that the Windows version was easy enough to use (that my aunt could use it), and was very efficient with bandwidth because it went over a modem connection quite well!

I have also run the TightVNC server on Linux desktops, connecting via both Windows and other Linux stations. Worked great! VNC is fantastic stuff.

The only downside (of VNC in general) seems to be lack of encryption of the channel. An easy solution to this is SSH tunneling - e.g. run PuTTY on the Windows side (it does tunneling) and connect through to your LAN station through your border's SSH server. Very secure, very convenient.

That may be, but the best SSH client for windows is not commercial. It's PuTTY, a Free (capital "F" for Freedom) software project. In fact, often it works better than SSH clients on unix. It certianly has terminal emulation that just works right.

CDEX
IRFanView
Winamp
iTunes
FireFox w/AdBlock and various other extensions
Some music
Assorted pictures
Spybot & AdAware
XP SP2
DefilerPak
Novell VPN client
Citrix client
Farbrausch demos
PuTTY
and the all-important XEvil

PuTTY is pretty solid, and I believe it handles ANSI.

It's primarily Win32 software, but there is a UNIX source. Might work in OS X, though there is an OS X port on the way (according to the FAQ)

PuTTY is pretty solid, and I believe it handles ANSI.

It's primarily Win32 software, but there is a UNIX source. Might work in OS X, though there is an OS X port on the way (according to the FAQ)

• MacWise - Claims to do it, and there is a demo. But if you like it it's $95 which is NOT cheap.
• From Mac OS X Hints - How to add ANSI color to Terminal.app (I like how programs end in ".app" :)). It is from '02 and mentions that the default shell on OS X is csh which (IIRC) means it's talking about 10.1 or 10.2 (since it was changed to bash in 10.3, right?).

My last suggestion is PuTTY. I've always found it to be an excelent program in the Windows world, and they have source for a Unix version which should work on OS X (this is based on the the Unix underpinnings, not anything written anywhere I saw). Download page, look under "Unix source" or something like that.

Hope one of those works, have fun.

Have you tried PuTTY? Whenever I happen to find myself on Windows and need to ssh, that's the first (and usually only) thing I think of. Just Feel Lucky for putty at google and it'll take you right there. And the best thing about PuTTY is that it doesn't require any sort of install -- just download and run. I've yet to find a simpler and more feature complete SSH client for Windows.

Most of us conscientious 'app vendors' have been diligently studying the various release candidates coming out of Redmond.

Before beating on the ISVs make sure you check out a legitimate bug in SP2. This particular bug wasn't present in RC2 and has caused a good few slashdot-friendly vendors some undue heartache (notably PuTTY).

Yes, there are vendors out there who ought to have been more prepared, but MS certainly needs to take a good deal of responsibility for these current issues.

Just in case his site gets /.'ed, here is his impressive list of links. - Jonah Hex in non-karma whore mode.
Downloads
Linux Wipe Tools: Three shell scripts for securely wiping all data from the swap partition, wiping unused disk space on the root partition, or wiping an entire disk, by Thomas C. Greene.

No Messenger: A batch file that eliminates Windows Messenger and fixes the problem of Outlook Express loading slowly when Messenger is absent, by an anonymous friend of The Register.

FileCheck MD5: A free, simple, lightweight MD5 utility for Windows, courtesy of Brandon Staggs.

Errata: A text file containing my various blunders and ommissions in the book (right-click and "save as," or view as HTML). Last updated 6 June 2004.

Links to Other Goodies
Mozilla: A free, open source Web browser and e-mail client for Linux and Windows, feature rich and far more secure than Internet Explorer and Outlook Express. Recommended for novices.

Firefox: A free, open source, stand-alone Web browser for Linux and Windows. Very light and fast. Recommended for intermediate users.

Thunderbird: A free, open source e-mail and news client for Linux and Windows. Recommended for intermediate users.

GnuPG: Gnu Privacy Guard; a free, open source replacement for PGP, for Windows and Linux.

WinPT: Windows Privacy Tools; a free, open source GUI frontend to GnuPG for Windows.

Anonymizer: Various services for anonymous Web surfing, e-mail, chat, etc.

OpenSSH: A free, open source SSH (Secure Shell) client and server for Windows and Linux.

PuTTY: A free, open source GUI frontend to OpenSSH for Windows.

Ethereal: A free, open source network traffic analyzer for Windows and Linux. Windows users will need to install WinPcap before installing Ethereal.

Ad-Aware: A free, closed source adware/spyware scanner for Windows.

SpyBot Search & Destroy: A free, closed source adware/spyware scanner for Windows.

Sam Spade: CGI gateways to numerous online tools, such as whois, traceroute, etc.

SourceForge: A vast repository of open-source software for Windows and Linux. The site can be overwhelming, but it has a search engine to help users locate packages.

GNU Project: The home base of the open source movement. A repository of open source products, chiefly for UNIX-compatible systems.

Security Information
About Internet/Network Security: An informative and useful site dealing with computer and Internet security, with reviews of security products and books, practical howtos and tips, and links to numerous tools and information resources, geared toward beginners and intermediate users.

SANS Institute: An educational and research organization with a vast archive of security research documents, news, and advisories, geared toward intermediate and advanced users.

CERT/CC: Computer Emergency Response Team Coordination Cente

Have you tried reading the FAQ?

I mean, it's really not *that* hard.

It's been said before, but the only intuitive interface is the nipple.