tunneling through stdin/stdout, source routing

Bob Proulx bob at proulx.com
Tue Nov 14 18:19:59 EST 2006

John Davidorff Pell wrote:
> couldn't some carefully constructed host directives in the config  
> file do this?
> e.g.:
> host cookie
> 	hostname monster
> 	ProxyCommand ssh -t -l ralph monster ssh -t -l root cookie

That does not work because ssh expects the ProxyCommand to connect it
to another sshd port 22.  The above does not do that but instead tries
to start an interactive shell.

Also beware of using -t to force ttys.  That won't be 8bit clean.  In
particular you probably don't want that in your config.

You probably do want -qq in the option list though.

  Host proxy.example.com
    ProxyCommand none

  Host *.example.com
    ProxyCommand ssh -qq proxy.example.com connect %h %p

Note that the ordering is important.


More information about the openssh-unix-dev mailing list