[Tfug] [WAs digest] Innocuous/ubiquitous service(s)?

Yan zardus at gmail.com
Tue Apr 23 16:10:22 MST 2013 

How about ssh? It can be hosted on any port, and the user immediately gets
a "RSA key fingerprint is AA:BB:CC:DD:....." message on the first
connection. SSH is blocked less rarely than SMTP (although it is still
blocked), and is found on nonstandard ports sometimes (although less often
than HTTP).

- Yan


On Sat, Apr 13, 2013 at 5:47 PM, Bexley Hall <bexley401 at yahoo.com> wrote:

> Hi Zack,
>
>
> On 4/13/2013 4:47 PM, Zack Breckenridge wrote:
>
>> Your description made me think of this:
>>
>> https://github.com/stealth/**sshttp <https://github.com/stealth/sshttp>
>>
>> Stable? Not sure. I've never actually used it.
>>
>> It sounds like one of the crucial factors in your decision is the client
>> code. For example, I think you could make a simple apache module that
>> throws up a custom banner before waiting for an HTTP request. For example,
>> "HELLO IM<IP ADDR>".
>> But if you plan on connecting with a browser, this might break the client.
>>
>> *If* you control the client code, then it probably isn't that big of a
>> deal.
>>
>
> I can control the client code -- though I'm looking at a scheme,
> currently, where that isn't necessary.
>
> Ideally, I want a service that "doesn't stand out" (innocuous)
> and, as such, never draws attention to itself.
>
> So, it should be reasonably ubiquitous as something that is NOT
> very common "stands out" by its very scarcity!  This is where
> HTTPd feels like the perfect fit (there are probably more
> HTTPd services than *computers* out there!  :-/ )
>
> But, any service that requires "customization" in order NOT to
> stand out (e.g., HTTPd without "user-specific content") also
> "stands out" -- "Why would someone create a web server that isn't
> serving up 'special' content??"
>
> So, the content that a particular service provides has to either
> be *common* (e.g., NTP always serves up ToD) or "externally
> sourced" (e.g., NNTP relays content provided by *others*).
>
> If you don't *know* I've (*me*) deployed this service at this (IP,port),
> then you shouldn't be able to *find* it, easily!
>
>
> ______________________________**_________________
> Tucson Free Unix Group - tfug at tfug.org
> Subscription Options:
> http://www.tfug.org/mailman/**listinfo/tfug_tfug.org<http://www.tfug.org/mailman/listinfo/tfug_tfug.org>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://tfug.org/pipermail/tfug_tfug.org/attachments/20130423/eb0d6ac5/attachment-0002.html>

More information about the tfug mailing list