SSH Socks proxy vs Openvpn

[evoltech]

Someone suggested the possibilitiy of using a SSH Socks proxy instead of openvpn for creating a VPN. I am not sure what the pros and cons of this would be. I am also not sure if this would satisfy all the requirements of setting up the portable vpn either. I wanted to add the issue here just the same to track the conversation regarding this.

This was spreviously being tracked on march-hare.org.

[isislovecruft]

I would argue that SSH is more secure than OpenVPN, due to several recently discovered vulnerabilities which cause an OpenVPN client to forcefully connect outside the VPN, through a MITM attack using the address of the client's OVPN server.

The security of SSH is well-established and tested, the most common vulnerability observed is that users seldom verify the signature of the server to which they are connecting, which exposes them to DNS spoofing attacks.

[bobtree]

I would agree with isis. Not to mention setting up an ssh socks proxy is MUCH easier than trying to get a VPN working.