Colorado School of Mines Secure Shell:    C. Igaly's ssh32.exe Academics Research Outreach Search Prospective Students Current Students Alumni and Friends Faculty and Staff Visitors News and Events Home


CSM Secure Shell:    Cedomir Igaly's 32-bit ssh32.exe

Cedomir Igaly's 32-bit ssh32.exe
(latest version 2.112 dated 23Feb99)

This freeware ssh program will allow encrypted connections to an ssh server for terminal sessions, exporting X11 displays and sending/receiving e-mail via POP. It includes a decent graphical interface, but not much on-line help. Does not "drop into" an NT lab setting well, since it requires users to access/write to the known_hosts file. Info at:     http://www.geocities.com/SiliconValley/Bay/1692/ssh-index.html
or:    http://www.doc.ic.ac.uk/~ci2/ssh/
or:     http://linuxmafia.com/pub/ms-windows/igaly-ssh/igaly.html


You'll need to download:

Installation:

  • Double click on the self-extracting "SecureShell.exe" and follow the install instructions.

Configuration:

  • To start, double click on the ssh32.exe icon (or single click the "Secure Shell" shortcut icon).
  • If you are asked to select an "Emulation Library", select "vtxxx32.dll" and click "OK" in the "Select Emulation Library" panel.
  • If you are asked to select a "Crypto Library", select "crypt32.dll" and click "OK" in the "Select Crypto Library" panel.
  • Configure your connection in the "SSH options" panel. The default "Cipher Type" for an encrypted session is "idea". If you choose "none" for Cipher Type, your connection will be unencrypted. For an example configuration connection to slate, see Figure 1. (You can save a connection profile for later use by entering a "Profile Name" and clicking the "Save" button.)


Example slate configuration

Figure 1:   Example slate configuration.


Startup:

  • To start, double click on the ssh32.exe icon (or single click the "Secure Shell" shortcut icon).
  • Enter host information for the host you want to connect to or select a saved profile by clicking on the down arrow button to the right of the "Profile Name" panel.
  • Click "OK" to connect to the selected host.
  • The first time you connect to a new host, a panel similar to Figure 2 will be displayed asking you to accept the host key. Choosing to "Accept" the key will save the host key for later use and can be used in conjunction with the "Strict host key checking" option.
  • Enter your password in the "Password" prompt panel (see Figure 3 and click "OK".


Accept New Host Key

Figure 2:    "New Host" Prompt Panel.


Password Prompt Panel

Figure 3:    Password Prompt Panel.


POP Mail Tunneling Configuration:

  • To "tunnel" or "encrypt" POP mail sessions you can make a configuration similar to what is shown in Figures 4 & 5.
  • You will also need to make changes to your POP mail client program options or setup:   if you are configuring an encrypted tunnel for incoming e-mail (typically port 110), you will need to set your incoming e-mail server (or POP mail server) to "localhost"; if you are configuring an encrypted tunnel for outgoing email (typically port 25), you will need to set your outgoing e-mail server (or SMTP server) to "localhost".
  • This connection must be/remain open whenever you try to POP/retrieve your e-mail via the encrypted tunnel. (You can minimize the panel or "hide" the connection by using and saving the "Hide window" option.)
  • The bottom left-hand side of Figure 6 shows typical information when an encrypted POP mail connection has been made.


Configurating Port Forwarding, part I

Figure 4:   "SSH options" example configuration for setting up port forwarding for an encrypted tunnel for POP mail connections.

Configurating Port Forwarding, part II

Figure 5:   Example configuration for "Local Forwards" for incoming (port 110) and outgoing (port 25) e-mail connections.


POP Connection

Figure 6:    A typical ssh32.exe terminal window with a "Local Forward" for POP mail (see lower left-hand corner).


NOTE:   The self-installing SSH executable comes with Peter Gutmann's crypt library version 2.0, but some installs of W95 don't like version 2.0 and require version 1.1. If you have problems with crypt32.dll version 2.0, you will need to:

  • Download crypl110.zip from:    http://www.doc.ic.ac.uk/~ci2/ssh/crypl110.zip
  • Copy crypl110.zip to an empty directory.
  • The only file you need is crypt32.dll...extract crypt32.dll. (If you have win-zip or a similar program, double click on "cryl110.zip". If you have pkzip/unzip, type: pkunzip crypl110.zip)
  • Copy crypt32.dll to the directory where you installed the SSH executable ("c:\Program Files\Secure Shell\", if you did a default installation).



**Web & download sites current as of 22March99


Back to:
CSM SSH Page | CSM Security Page

Send comments & questions to SecurityWebmaster@mines.edu
Saturday, 31-Mar-2001 10:08:11 MST