Re: “Stripped-down” SSH (no encryption or authentication, just forwarding)
Demi M. Obenour
demiobenour at gmail.com
Wed Oct 16 12:12:05 AEDT 2019
On 2019-10-15 20:37, Jeremy Lin wrote:
> On Tue, Oct 15, 2019 at 4:02 PM Demi M. Obenour <demiobenour at gmail.com> wrote:
>>
>> [...snip...] Essentially, this tool would be an “SSH
>> subsystem” ― it would provide all of the forwarding features of
>> sshd(8), but without encryption or authentication. This is similar
>> to how sftp-server(8) expects an already secure and authenticated
>> connection.
>
> You might want to investigate HPN-SSH (https://www.psc.edu/hpn-ssh),
> which among other things, is supposed to support disabling encryption
> and authentication, though this support isn't enabled by default.
>
That is amazing, thanks! I would love to see their networking
patches upstreamed. As far as disabling the crypto, it would be
nice if the insecure version built separate binaries. mux-client(1)
and mux-server(1) anyone?
Would building such binaries from the same source tree be acceptable
to the OpenSSH maintainers?
Sincerely,
Demi
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 833 bytes
Desc: OpenPGP digital signature
URL: <http://lists.mindrot.org/pipermail/openssh-unix-dev/attachments/20191015/0429d6d4/attachment.asc>
More information about the openssh-unix-dev
mailing list