| View previous topic :: View next topic |
| Author |
Message |
el3ktro
Tux's lil' helper
Joined: 06 Dec 2005
Posts: 115
Location: Cologne, Germany
|
 Posted: Tue Dec 20, 2005 4:46 pm Post subject: SSH connections WITHOUT encryption |
 |
|
This may sound weird, but I'm searching for a way to establish UNencrypted SSH connections (which makes the first 'S' obsolete  ). The reason is: I'm often using X11/SSH connections at home between my girlfriend's iBook and my desktop machine (this is a neat way for my gf to view flash animations while in Linux on her iBook, she can launch Konqueror on my desktop  . I'm afraid that due to the fact that this connection is encrypted, it is slower than it has to be (Flash animations are actually pretty smooth, but sounds lacks a bit sometimes). Also I'm currently using NFS o share files, but I'd prefer SHFS for this simply because I wouldn't need to run portmap+nfsd on both machines, but shfs is pretty slow compared to nfs.
Thanks for your replies!
Tom |
|
| Back to top |
|
 |
nevynxxx
Veteran
Joined: 12 Nov 2003
Posts: 1123
Location: Manchester - UK
|
| Posted: Tue Dec 20, 2005 4:54 pm Post subject: |
|
|
Loose the ssh entirely??
X11 is itself a network protocol. People only use ssh for the secuity of an encrypted connection.
On the other hand, I wouldn't expect the encryption to even register on a modern computer, sshd is currently using 1% of the cpu on my 400MHz server at home, and 0.0% on my server at work that has a VNC X session running (VNC is using 0.3% and thats on a 1.4GHz Petium 4)
_________________
My Public Key
Wanted: Instructor in the art of Bowyery |
|
| Back to top |
|
|
toralf
Developer
Joined: 01 Feb 2004
Posts: 3943
Location: Hamburg
|
| Posted: Tue Dec 20, 2005 5:02 pm Post subject: |
|
|
| Use telnet and export DISPLAY variable ? |
|
| Back to top |
|
|
Jrauch
n00b
Joined: 19 Dec 2005
Posts: 20
|
| Posted: Tue Dec 20, 2005 5:11 pm Post subject: |
|
|
Try high performance ssh, they have a patch that uses no encryption after the conection is established.
That patch isn't in portage, but it's easy to copy the existing ebuild and make it happen.
http://www.psc.edu/networking/projects/hpn-ssh/
oh, and it's the hpn use flag, if you didn't get that from the project name. |
|
| Back to top |
|
|
allucid
Veteran
Joined: 02 Nov 2002
Posts: 1314
Location: atlanta
|
| Posted: Tue Dec 20, 2005 5:49 pm Post subject: |
|
|
| You can't disable encryption with ssh (at least not without a patch). You can use a faster cipher though -- such as blowfish. It shouldn't make much of a noticable difference on a modern compter, though. |
|
| Back to top |
|
|
Catch-22
Apprentice
Joined: 22 Oct 2004
Posts: 244
|
| Posted: Tue Dec 20, 2005 11:01 pm Post subject: |
|
|
Most people here are talking about cpu load but what about network load?
I think I remember my old g3 laptop managing 700KB/s via ftp but 500KB/s via scp
I'm no expert but I would've thought that there would be (a bit) more overhead with a secure transfer. I have no idea how much overhead it would be. |
|
| Back to top |
|
|
nevynxxx
Veteran
Joined: 12 Nov 2003
Posts: 1123
Location: Manchester - UK
|
| Posted: Wed Dec 21, 2005 9:27 am Post subject: Re: SSH connections WITHOUT encryption |
|
|
| el3ktro wrote: | | The reason is: I'm often using X11/SSH connections at home between my girlfriend's iBook and my desktop machine (this is a neat way for my gf to view flash animations while in Linux on her iBook, she can launch Konqueror on my desktop |
| Catch-22 wrote: | | Most people here are talking about cpu load but what about network load? |
I would expect this to be either 10Mb or 100Mb, possibly even 1Gb dependin on the Desktop involved and any switches involved.
Not really likely to be bandwidth problems displaying flash!
_________________
My Public Key
Wanted: Instructor in the art of Bowyery |
|
| Back to top |
|
|
el3ktro
Tux's lil' helper
Joined: 06 Dec 2005
Posts: 115
Location: Cologne, Germany
|
| Posted: Wed Dec 21, 2005 10:27 am Post subject: |
|
|
Thanks for your answers so far. Well I tried it again, I launched the Konqueror installed on the desktop via SSH on the iBook, and opened a website with a flash movie, and top showed that on the desktop machine, ssh would go up to something like 30%. This is on an AMD64 3000+. How exactly would I have to do this with telnet? Is there a way to do this without SSH/Telnet etc. at all?
Tom
I have a 100MBit LAN btw. |
|
| Back to top |
|
|
ruben
Guru
Joined: 04 Jul 2003
Posts: 462
|
| Posted: Wed Dec 21, 2005 11:23 am Post subject: |
|
|
| Catch-22 wrote: | Most people here are talking about cpu load but what about network load?
I think I remember my old g3 laptop managing 700KB/s via ftp but 500KB/s via scp
I'm no expert but I would've thought that there would be (a bit) more overhead with a secure transfer. I have no idea how much overhead it would be. |
Connections with ssh can use compression, but i don't know whether that feature is by default on or off.
In any case, transferring a file >1GB between a G3 800Mhz laptop and a 1.7Ghz P4 desktop over a 100Mb ethernet cable did use a noticeable amount of cpu time, on both.
There is a way to do it without ssh/telnet, and that is by using XDMCP. But if you do this, then the ibook would only be running the Xserver, and all applications would be running on the desktop. This is probably not what you want. (if you use GDM on both machines, you can easily configure XDMCP in the GDM settings)
In any case, just using telnet and remote X will give you the least amount of overhead for just running Konqueror remotely. Just make sure that you have firewall rules in place to only accept telnet connections from the ibook. Telnet is insecure because it transmits all data unencrypted, but if you're using it on a local network which is not accessible from outside, then it's fine. So, you just install the telnet daemon on the AMD64, and from the ibook you login on the AMD64 and export the right DISPLAY (ibook:0.0), then you probably also need to use xhost locally on the ibook to accept connections from the AMD64, and that's all. |
|
| Back to top |
|
|
|
Networking & Security
