[Bug 1513] New: CIDR address/masklen matching support for permitopen=

bugzilla-daemon at bugzilla.mindrot.org bugzilla-daemon at bugzilla.mindrot.org
Wed Aug 27 21:46:26 EST 2008


           Summary: CIDR address/masklen matching support for permitopen=
           Product: Portable OpenSSH
           Version: 5.1p1
          Platform: All
        OS/Version: All
            Status: NEW
          Severity: enhancement
          Priority: P2
         Component: sshd
        AssignedTo: unassigned-bugs at mindrot.org
        ReportedBy: 238749328749 at gmx.de

In OpenSSH 5.1 you introduced CIDR address/masklen matching for "Match
address" blocks in sshd_config as well as supporting CIDR matching in
~/.ssh/authorized_keys from="..." restrictions in sshd.

I wonder whether CIDR address/masklen matching will be implemented for
permitopen="host:port" restrictions in sshd as well, that would be
quite beneficially (at least for me, maybe others,too;-) (There was
already a request for a feature like that incl a patch back in 2005)

--> permitopen="net/mask:port(s)"
--> permitopen="net/mask:port_range"

You suggested to look into it by myself (and perhaps contribute a
patch...) - I definitively would do that if I'd only speak C...

Thank you - kind regards,


Configure bugmail: https://bugzilla.mindrot.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are watching the assignee of the bug.

More information about the openssh-bugs mailing list