Hello and welcome to the Friday, May 9th,

2025 edition of the Sands Internet Stormers Stormcast.

My name is Johannes Ulrich, and today I'm recording from San Diego, California.

Well, Xavier is on a roll and we got another diary from Xavier.

This time, a little SSH trick.

The problem here was that Xavier was provided with a system that only was accessible.

The SSH had no outbound connectivity.

That was all blocked by the firewall.

And Xavier still had to basically reach out to a couple of websites to download additional tools.

This quick solution here was, well, it just used the existing S-H tunnel to connect back to an

HTTP proxy and from there, of course, back to the world.

All unique with S-ZH is one single connection and then you can use it to

forward ports and basically tunnel additional traffic. It's actually another thing that I've

used in the past a couple of times where you just run a point-to-point connection over SSH.

That gives you essentially a complete VPN via SSH.

Not quite as reliable as other VPN solutions. That's why I haven't really lately been

using it much. But in a pinch, if all you have is SSH, that's certainly quite useful. And I've

run into situations, for example, while traveling,

where hotel or conference center networks were quite restricted, and well, then something like

this is sometimes saved today. When last week, I wrote about exploits of a Samsung Magic Info9 Warnability.

And back then I stated that, well, this vulnerability was actually patched back last August.

Huntress Lab today published a blog post stating that the patch back from August probably didn't

...