port forwarding as root

Aidas Kasparas kaspar at lifosa.com
Thu Jun 8 06:36:50 EST 2000


Hi,

	I'm little unhappy that OpenSSH server forwards connections while
running as root. Services what checks out using ident protocol complains
about me working as root [and for a good reason].

	To change situation I see following ways:
	1) for every port forwarding fork();setuid();forward|exec(netcat)
	2) after authentication grab one pty;setuid();forward connections as
requested [is there client which opens more than one
interactive/forwarded connection?]
	3) fool somehow ident server [how?]

	I need your oppinions.

-- 
Aidas Kasparas
Network Manager
AB Lifosa





More information about the openssh-unix-dev mailing list