> Alternatively, would it be possible to add a config option, allowing an > administrator to disable reverse port forwarding or limit it's > destinations? Look for "restrict" in the documentation for "authorized_keys".