Inline Side-by-side Side-by-side Markdown If I want to have some additional security or need to access SSH servers deep inside some corporate network I setup a hidden service by using the anonymisation software Tor. Install Tor and setup the SSH server itself. Make sure sshd only listens at localhost . Open /etc/tor/torrc . Set HiddenServiceDir /var/lib/tor/ssh and HiddenServicePort 22 127.0.0.1:22 . Look at var/lib/tor/ssh/hostname . There is a name like d6frsudqtx123vxf.onion . This is the address of the hidden service. Open $HOME/.ssh/config and add some lines: Host myhost

HostName d6frsudqtx123vxf.onion

ProxyCommand socat STDIO SOCKS4A:127.0.0.1:%h:%p,socksport=9050 Host myhost HostName d6frsudqtx123vxf.onion ProxyCommand socat STDIO SOCKS4A:127.0.0.1:%h:%p,socksport=9050 Furthermore I need Tor on my local host. If it is installed I can enter ssh myhost and SSH opens a connection via Tor. The SSH server on the other side opens its port only on localhost. So nobody can connect it via "normal internet". If I want to have some additional security or need to access SSH servers deep inside some corporate network I setup a hidden service by using the anonymisation software Tor. Install Tor and setup the SSH server itself. Make sure sshd only listens at localhost . Open /etc/tor/torrc . Set HiddenServiceDir /var/lib/tor/ssh and HiddenServicePort 22 127.0.0.1:22 . Look at var/lib/tor/ssh/hostname . There is a name like d6frsudqtx123vxf.onion . This is the address of the hidden service. Open $HOME/.ssh/config and add some lines: Host myhost

HostName d6frsudqtx123vxf.onion

ProxyCommand socat STDIO SOCKS4A:127.0.0.1:%h:%p,socksport=9050 Furthermore I need Tor on my local host. If it is installed I can enter ssh myhost and SSH opens a connection via Tor. The SSH server on the other side opens its port only on localhost. So nobody can connect it via "normal internet". If I want to have some additional security or need to access SSH servers deep inside some corporate network I setup a hidden service by using the anonymisation software Tor. Install Tor and setup the SSH server itself. Make sure sshd only listens at localhost . Open /etc/tor/torrc . Set HiddenServiceDir /var/lib/tor/ssh and HiddenServicePort 22 127.0.0.1:22 . Look at var/lib/tor/ssh/hostname . There is a name like d6frsudqtx123vxf.onion . This is the address of the hidden service. Open $HOME/.ssh/config and add some lines: Host myhost HostName d6frsudqtx123vxf.onion ProxyCommand socat STDIO SOCKS4A:127.0.0.1:%h:%p,socksport=9050 Furthermore I need Tor on my local host. If it is installed I can enter ssh myhost and SSH opens a connection via Tor. The SSH server on the other side opens its port only on localhost. So nobody can connect it via "normal internet".