[openssh-commits] CVS: fuyu.mindrot.org: openssh
Damien Miller
djm at mindrot.org
Mon Jul 24 14:04:01 EST 2006
CVSROOT: /var/cvs
Module name: openssh
Changes by: djm at fuyu.mindrot.org 2006/07/24 14:04:00
Modified files:
. : ChangeLog channels.c channels.h servconf.c
sshd_config.5
Log message:
- dtucker at cvs.openbsd.org 2006/07/17 12:06:00
[channels.c channels.h servconf.c sshd_config.5]
Add PermitOpen directive to sshd_config which is equivalent to the
"permitopen" key option. Allows server admin to allow TCP port
forwarding only two specific host/port pairs. Useful when combined
with Match.
If permitopen is used in both sshd_config and a key option, both
must allow a given connection before it will be permitted.
Note that users can still use external forwarders such as netcat,
so to be those must be controlled too for the limits to be effective.
Feedback & ok djm@, man page corrections & ok jmc at .
cvs -n rdiff -u -r1.4414 -r1.4415 openssh/ChangeLog
cvs -n rdiff -u -r1.237 -r1.238 openssh/channels.c
cvs -n rdiff -u -r1.78 -r1.79 openssh/channels.h
cvs -n rdiff -u -r1.145 -r1.146 openssh/servconf.c
cvs -n rdiff -u -r1.67 -r1.68 openssh/sshd_config.5
More information about the openssh-commits
mailing list