Register Guidelines E-Books Search Today's Posts Mark Forums Read

Go Back   MobileRead Forums > E-Book Readers > Amazon Kindle

Notices

Reply
 
Thread Tools Search this Thread
Old 12-19-2010, 11:28 AM   #1
stvs
Junior Member
stvs began at the beginning.
 
Posts: 4
Karma: 10
Join Date: Dec 2010
Device: Kindle 3
SSH tunnel on Kindle

N00b q: I'm a few hours into my new Kindle, and thanks to this forum, have successfully have it JB'd, run ~usbNetwork, ssh root:fiona@192.168.2.2, mntroot rw, passwd and changed my root password, and can log in as root over WiFi. Thanks you! -- that was very easy!

Now I'd like to apply this capability and run an ssh tunnel from my Kindle to my server for secure http/https, and set my Kindle browser's proxy settings to localhost:8080.

How do you execute the ssh tunnel command

ssh -p 22 -L 8080:localhost:3128 -l user hostname.com -f -C -q -N
Then how do you browse securely through the proxy tunnel established at localhost:8080?

Are there any options yet for setting up a VPN tunnel to a VPN server?
stvs is offline   Reply With Quote
Old 01-01-2011, 02:50 PM   #2
stvs
Junior Member
stvs began at the beginning.
 
Posts: 4
Karma: 10
Join Date: Dec 2010
Device: Kindle 3
*bump*

I don't have a solution for changing the proxy settings on a K3 yet, but some relevant links and more questions.

Does the K3 proxy all wifi traffic through the amazon proxy at fints-g7g.amazon.com? This page says about the K2,

Quote:
One slightly terrifying thing I noted in the NetFront configuration file on the Kindle 2 - All traffic is proxied through fints-g7g.amazon.com, Amazon's Kindle web proxy. HTTP and HTTPS alike are proxied on port 80. Amazon can see what you're downloading, even if you "use SSL." (As could anybody who could sniff your EVDO traffic, but I'm told that's something that's only easy if the attacker is running MovieOS). I know there are solid technical reasons for this decision on Amazon's part. It doesn't exactly make me comfortable.
Is this actually true for K3 wifi browsing?!! I'm having trouble with a wifi tcpdump, so I haven't been able to verify this.

Confusingly, I also cannot figure out how or where the K3 sets its proxy settings or even User Agent. The K3 file "/opt/amazon/ebook/config/browser_wv.conf" sets up the UA "Mozilla/4.0 (compatible; Linux 2.6.22) NetFront/3.4 Kindle/2.2", but when I browse to whatsmyuseragent.com, it says "Mozilla/5.0 (Linux; U; en-US) AppleWebKit/528.5+ (KHTML, like Gecko, Safari 528.5+) Version/4.0 Kindle 3.0 (screen 600x800; rotate)". And grepping for ''Mozilla/5.0" on the entire K3's file system turns up nothing.

Peter Hannay has some great tips in his talk "Hooray for Reading: Hacking the Kindle", but how to set up a non-Amazon proxy still isn't clear.

Is Amazon proxying all Kindle wifi traffic, including HTTPS? If true, this is very disturbing and highly insecure. Does Amazon have a stated privacy policy about such traffic? Does Amazon state if they log or track web traffic from Kindles?

Does anyone have any ideas how to set up a Kindle browser to use a secure wifi proxy?
stvs is offline   Reply With Quote
 
Enthusiast
Old 01-01-2011, 02:54 PM   #3
Tiersten
Guru
Tiersten shines like a glazed doughnut.Tiersten shines like a glazed doughnut.Tiersten shines like a glazed doughnut.Tiersten shines like a glazed doughnut.Tiersten shines like a glazed doughnut.Tiersten shines like a glazed doughnut.Tiersten shines like a glazed doughnut.Tiersten shines like a glazed doughnut.Tiersten shines like a glazed doughnut.Tiersten shines like a glazed doughnut.Tiersten shines like a glazed doughnut.
 
Posts: 987
Karma: 8641
Join Date: Aug 2010
Device: Kindle 3G+WiFi
Quote:
Originally Posted by stvs View Post
Does the K3 proxy all wifi traffic through the amazon proxy at fints-g7g.amazon.com?
No. Only 3G.

Quote:
Originally Posted by stvs View Post
The K3 file "/opt/amazon/ebook/config/browser_wv.conf" sets up the UA "Mozilla/4.0 (compatible; Linux 2.6.22) NetFront/3.4 Kindle/2.2",
That is the old Kindle browser on the older Kindles. No idea where it is for a K3/v3 firmware.

Quote:
Originally Posted by stvs View Post
Is Amazon proxying all Kindle wifi traffic, including HTTPS?
No. WiFi is direct.
Tiersten is offline   Reply With Quote
Old 01-01-2011, 05:48 PM   #4
3bayjunkie
SPC
3bayjunkie knows what is on the back of the AURYN.3bayjunkie knows what is on the back of the AURYN.3bayjunkie knows what is on the back of the AURYN.3bayjunkie knows what is on the back of the AURYN.3bayjunkie knows what is on the back of the AURYN.3bayjunkie knows what is on the back of the AURYN.3bayjunkie knows what is on the back of the AURYN.3bayjunkie knows what is on the back of the AURYN.3bayjunkie knows what is on the back of the AURYN.3bayjunkie knows what is on the back of the AURYN.3bayjunkie knows what is on the back of the AURYN.
 
3bayjunkie's Avatar
 
Posts: 95
Karma: 9594
Join Date: Dec 2010
Device: Kindle 3 (3g,black)
Question: can you set the Kindle 3g up like a 3g phone where the phone can share internet with other WiFi devices IE: a computer.
3bayjunkie is offline   Reply With Quote
Old 01-01-2011, 05:54 PM   #5
Tiersten
Guru
Tiersten shines like a glazed doughnut.Tiersten shines like a glazed doughnut.Tiersten shines like a glazed doughnut.Tiersten shines like a glazed doughnut.Tiersten shines like a glazed doughnut.Tiersten shines like a glazed doughnut.Tiersten shines like a glazed doughnut.Tiersten shines like a glazed doughnut.Tiersten shines like a glazed doughnut.Tiersten shines like a glazed doughnut.Tiersten shines like a glazed doughnut.
 
Posts: 987
Karma: 8641
Join Date: Aug 2010
Device: Kindle 3G+WiFi
Quote:
Originally Posted by 3bayjunkie View Post
Question: can you set the Kindle 3g up like a 3g phone where the phone can share internet with other WiFi devices IE: a computer.
No. You can't make the Kindle into a hotspot.

Even if you could, everything has to go through the web proxy servers that stvs mentioned. Your Kindle ID which is specific to that Kindle unit is sent as part of the proxy authentication and if Amazon notice you then it is possible that you'll end up with a $189 paperweight all to get "free" 3G. Its against the terms of use for the Kindle and the associated Whispernet service.
Tiersten is offline   Reply With Quote
Old 06-01-2011, 05:31 PM   #6
travfar
Groupie
travfar can tie a knot in a cherry stem with his or her tonguetravfar can tie a knot in a cherry stem with his or her tonguetravfar can tie a knot in a cherry stem with his or her tonguetravfar can tie a knot in a cherry stem with his or her tonguetravfar can tie a knot in a cherry stem with his or her tonguetravfar can tie a knot in a cherry stem with his or her tonguetravfar can tie a knot in a cherry stem with his or her tonguetravfar can tie a knot in a cherry stem with his or her tonguetravfar can tie a knot in a cherry stem with his or her tonguetravfar can tie a knot in a cherry stem with his or her tonguetravfar can tie a knot in a cherry stem with his or her tongue
 
Posts: 186
Karma: 22910
Join Date: Aug 2009
Device: laptop
Quote:
Originally Posted by Tiersten View Post
No. You can't make the Kindle into a hotspot.

Even if you could, everything has to go through the web proxy servers that stvs mentioned. Your Kindle ID which is specific to that Kindle unit is sent as part of the proxy authentication and if Amazon notice you then it is possible that you'll end up with a $189 paperweight all to get "free" 3G. Its against the terms of use for the Kindle and the associated Whispernet service.
Sorry to bump an ancient thread, but this is wrong. You can use the Kindle as a "hotspot" for your computer. You can tether a Kindle like you would a cell phone. I found this out when tryng to figure out if the Kindle's web browser was private. It's not by the way.
travfar is offline   Reply With Quote
Old 06-01-2011, 07:39 PM   #7
kranu
I <3 my Kindle
kranu can understand the language of future parallel dimensionskranu can understand the language of future parallel dimensionskranu can understand the language of future parallel dimensionskranu can understand the language of future parallel dimensionskranu can understand the language of future parallel dimensionskranu can understand the language of future parallel dimensionskranu can understand the language of future parallel dimensionskranu can understand the language of future parallel dimensionskranu can understand the language of future parallel dimensionskranu can understand the language of future parallel dimensionskranu can understand the language of future parallel dimensions
 
Posts: 528
Karma: 51332
Join Date: Nov 2010
Location: United States
Device: Kindle 3G + WiFi
[Edit: Nvm]

Last edited by kranu; 06-01-2011 at 07:41 PM.
kranu is offline   Reply With Quote
Old 06-01-2011, 09:45 PM   #8
yifanlu
Kindle Dissector
yifanlu can program the VCR without an owner's manual.yifanlu can program the VCR without an owner's manual.yifanlu can program the VCR without an owner's manual.yifanlu can program the VCR without an owner's manual.yifanlu can program the VCR without an owner's manual.yifanlu can program the VCR without an owner's manual.yifanlu can program the VCR without an owner's manual.yifanlu can program the VCR without an owner's manual.yifanlu can program the VCR without an owner's manual.yifanlu can program the VCR without an owner's manual.yifanlu can program the VCR without an owner's manual.
 
Posts: 662
Karma: 170717
Join Date: Jul 2010
Device: Amazon Kindle 3
Quote:
Originally Posted by travfar View Post
Sorry to bump an ancient thread, but this is wrong. You can use the Kindle as a "hotspot" for your computer. You can tether a Kindle like you would a cell phone. I found this out when tryng to figure out if the Kindle's web browser was private. It's not by the way.
Are you talking about tethering or reverse tethering? Aka: who broadcasts the signal? What do you mean by "private" web browser? If you mean that all data passes through the fints proxy, then no, nothing's private.
yifanlu is offline   Reply With Quote
Old 06-01-2011, 11:43 PM   #9
kranu
I <3 my Kindle
kranu can understand the language of future parallel dimensionskranu can understand the language of future parallel dimensionskranu can understand the language of future parallel dimensionskranu can understand the language of future parallel dimensionskranu can understand the language of future parallel dimensionskranu can understand the language of future parallel dimensionskranu can understand the language of future parallel dimensionskranu can understand the language of future parallel dimensionskranu can understand the language of future parallel dimensionskranu can understand the language of future parallel dimensionskranu can understand the language of future parallel dimensions
 
Posts: 528
Karma: 51332
Join Date: Nov 2010
Location: United States
Device: Kindle 3G + WiFi
Quote:
Originally Posted by yifanlu View Post
Are you talking about tethering or reverse tethering? Aka: who broadcasts the signal? What do you mean by "private" web browser? If you mean that all data passes through the fints proxy, then no, nothing's private.
I believe he's saying that you connect the Kindle to the computer, and use the Kindle 3G to access the web from computer.
kranu is offline   Reply With Quote
Old 06-02-2011, 04:00 PM   #10
travfar
Groupie
travfar can tie a knot in a cherry stem with his or her tonguetravfar can tie a knot in a cherry stem with his or her tonguetravfar can tie a knot in a cherry stem with his or her tonguetravfar can tie a knot in a cherry stem with his or her tonguetravfar can tie a knot in a cherry stem with his or her tonguetravfar can tie a knot in a cherry stem with his or her tonguetravfar can tie a knot in a cherry stem with his or her tonguetravfar can tie a knot in a cherry stem with his or her tonguetravfar can tie a knot in a cherry stem with his or her tonguetravfar can tie a knot in a cherry stem with his or her tonguetravfar can tie a knot in a cherry stem with his or her tongue
 
Posts: 186
Karma: 22910
Join Date: Aug 2009
Device: laptop
Quote:
Originally Posted by yifanlu View Post
Are you talking about tethering or reverse tethering? Aka: who broadcasts the signal? What do you mean by "private" web browser? If you mean that all data passes through the fints proxy, then no, nothing's private.
Tethering. Using the Kindle as your "modem" to get internet access. It's been done on the K2 and people have adapted that to the K3. As far as Amazon is concerned, it's all coming from your Kindle. But the huge increase in traffic and multiple simultaneous connections would be a giveaway.
travfar is offline   Reply With Quote
Reply

Tags
ssh tunnel proxy vpn

Thread Tools Search this Thread
Search this Thread:

Advanced Search

Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
Hacks Is there an ssh client for the Kindle ? ninsei Amazon Kindle 3 11-18-2011 08:55 PM
Usbnetwork/ssh on kindle 3? yifanlu Kindle Developer's Corner 58 10-18-2010 05:39 PM
ssh from Kindle 3 aKarma Kindle Developer's Corner 6 09-21-2010 08:59 PM
SSH to Kindle Zorz Kindle Developer's Corner 16 01-15-2010 01:18 AM
Kindle + SSH? Elegant Forkbomb Amazon Kindle 3 03-05-2009 08:12 AM


All times are GMT -4. The time now is 09:32 PM.


MobileRead.com is a privately owned, operated and funded community.