Re: “Stripped-down” SSH (no encryption or authentication, just forwarding)

Demi M. Obenour demiobenour at
Wed Oct 16 12:12:05 AEDT 2019

On 2019-10-15 20:37, Jeremy Lin wrote:
> On Tue, Oct 15, 2019 at 4:02 PM Demi M. Obenour <demiobenour at> wrote:
>> [...snip...] Essentially, this tool would be an “SSH
>> subsystem” ― it would provide all of the forwarding features of
>> sshd(8), but without encryption or authentication.  This is similar
>> to how sftp-server(8) expects an already secure and authenticated
>> connection.
> You might want to investigate HPN-SSH (,
> which among other things, is supposed to support disabling encryption
> and authentication, though this support isn't enabled by default.
That is amazing, thanks!  I would love to see their networking
patches upstreamed.  As far as disabling the crypto, it would be
nice if the insecure version built separate binaries.  mux-client(1)
and mux-server(1) anyone?

Would building such binaries from the same source tree be acceptable
to the OpenSSH maintainers?



-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 833 bytes
Desc: OpenPGP digital signature
URL: <>

More information about the openssh-unix-dev mailing list