Unix socket support for sshd

Ron Frederick ronf at timeheart.net
Fri Feb 5 02:57:21 AEDT 2016


> On Feb 4, 2016, at 7:46 AM, Daniel Kahn Gillmor <dkg at fifthhorseman.net> wrote:
> 
> On Thu 2016-02-04 07:40:39 -0500, David Goulet wrote:
> 
>> I would like to know if adding support for Unix socket to sshd would be a
>> feature that would be consider to be added upstream? (ListenAddress).
> 
> fwiw, i think this is a good idea, but i wouldn't implement it as an
> explicit ListenAddress option: i'd rather have sshd be able to listen on
> an inherited file descriptor.  This would allow generic socket
> activation, regardless of socket type.

Can’t this already be done with “sshd -i”, by passing in the socket via stdin/stdout? A simple wrapper which listened on the UNIX domain socket could fork & exec “sshd -i” as new UNIX domain socket connections arrived, similar to inetd.
-- 
Ron Frederick
ronf at timeheart.net





More information about the openssh-unix-dev mailing list