Remote port forwarding
Markus Friedl
markus.friedl at informatik.uni-erlangen.de
Tue Oct 10 04:45:20 EST 2000
On Mon, Oct 09, 2000 at 02:19:02PM +0200, Jose A. Rodriguez wrote:
> Active Internet connections (servers and established)
> Proto Recv-Q Send-Q Local Address Foreign Address State
> tcp 0 0 127.0.0.1:9000 0.0.0.0:* LISTEN
>
> I've checked the code and the only use of the "gateway_ports" variable
> is when calling the getaddrinfo function (inside
> channel_request_local_forwarding).
in ssh1 channel_request_local_forwarding() is re-used by sshd.
>
> The right behaviour should be to deny the port fordwarding request,
> shouldn't it?
you can see above that sshd only listens on 127.0.0.1:9000, and this
is what 'GatewayPorts no' means.
right now there is no option for turning off -R/-L style forwarding in
the server config.
-markus
More information about the openssh-unix-dev
mailing list