Patch for Socks5 support for dynamic portforwaring?
Dan Kaminsky
dan at doxpara.com
Wed Jun 25 18:09:05 EST 2003
You can already do this; simply start a SOCKS5/HTTP/whatever server on
the remote host and local port forward.
What makes dynamic forwarding cool is sshd is _already_ a port
forwarder; instead of requiring two port forwarders on the remote server
(one of which is almost certainly insecure), a relatively small amount
of code added to the ssh daemon eliminates an entire server-side
daemon. Cool.
--Dan
>Hi,
>thanks for your answer.
>
>One suggestion: How about removing the complete Port Forwardig code from ssh
>and introducing another subsystem (like sftp-server)?
>
>It could work like this: the user command is 'ssocks' which opens a ssh
>session to a server and starts the 'ssocks-server' subsystem.
>
>I think this sounds quite simple...
>
>- alex
>
>
>-----Ursprungliche Nachricht-----
>Von: Ben Lindstrom [mailto:mouring at etoh.eviladmin.org]
>Gesendet: Dienstag, 24. Juni 2003 22:14
>An: Alex Peuchert
>Cc: openssh-unix-dev at mindrot.org; markus at openbsd.org
>Betreff: Re: Patch for Socks5 support for dynamic portforwaring?
>
>
>
>
>There is a break point for features vs bloat. At the time we removed
>socks5 and http support because they were considered bloat. No other
>real reason.
>
>I'd like to know the sock4 vs sock5 numbers for the userbase. If people
>are using sock5 more. Then maybe sock4 should vanish in rebalance the
>code growth.
>
>- Ben
>
>On Tue, 24 Jun 2003, Alex Peuchert wrote:
>
>
>
>>Hi,
>>just to enlighten my ignorance ;-)
>>
>>Why was Socks5 support removed from openssh?
>>
>>I also could see some useful applications for SOCKS5 over SSH ...
>>
>>- alex
>>
>>-----Ursprungliche Nachricht-----
>>Von: openssh-unix-dev-bounces+openssh=peuchert.de at mindrot.org
>>[mailto:openssh-unix-dev-bounces+openssh=peuchert.de at mindrot.org]Im
>>Auftrag von Markus Friedl
>>Gesendet: Dienstag, 24. Juni 2003 12:51
>>An: oldsleepi
>>Cc: openssh-unix-dev at mindrot.org
>>Betreff: Re: Patch for Socks5 support for dynamic portforwaring?
>>
>>
>>
>>
>>>has anybody seen a patch that provides socks version 5 support for the
>>>
>>>
>>dynamic portforwarding feature?
>>
>>why? we removed that feature:
>>
>>
>>
>>
>http://www.openbsd.org/cgi-bin/cvsweb/src/usr.bin/ssh/channels.c.diff?r1=1.1
>
>
>>08&r2=1.109
>>
>>_______________________________________________
>>openssh-unix-dev mailing list
>>openssh-unix-dev at mindrot.org
>>http://www.mindrot.org/mailman/listinfo/openssh-unix-dev
>>
>>_______________________________________________
>>openssh-unix-dev mailing list
>>openssh-unix-dev at mindrot.org
>>http://www.mindrot.org/mailman/listinfo/openssh-unix-dev
>>
>>
>>
>
>
>_______________________________________________
>openssh-unix-dev mailing list
>openssh-unix-dev at mindrot.org
>http://www.mindrot.org/mailman/listinfo/openssh-unix-dev
>
>
More information about the openssh-unix-dev
mailing list