Better port forwarding control
Kieran Barry
kbarry at snaz.com
Wed Mar 7 09:32:35 EST 2001
Michael Salmon wrote:
>
> hi kieran,
> i've had the same need before and have the patches to do
> this also, we needed to
> allow only specific ports to be forwarded. This was
> rejected to the mainstream
> because it was requested to be implemented using a security
> protocol that i
> once bookmarked, planned on reading over, and have since
> forgotten and deleted
> it. (ring a bell anyone?)
> If you want to get together and work on adding this feature
> using the protocol
> markus said it required, i'd be happy to talk with you
> about it since I think
> this is a good feature to have for many users.
> I was told this was already in an older version of openssh,
> but I havent tried
> it out. It was removed from the head before i checked out the code.
>
> cheers,
> ms
>
Hi Michael,
I'd be very interested in looking at your patches! Certainly,
for the short term, that is the easiest way forward.
I've done a quick mailing list search on keys:
port & forwarding & markus
and I have dug up the keynote trust management system:
http://www.cis.upenn.edu/~angelos/keynote.html
Is this what was recommended previously?
Regards
Kieran
More information about the openssh-unix-dev
mailing list