This is a discussion on 3.8.1p1 option "permitopennet" added - openssh ; This is a multi-part message in MIME format. ------_=_NextPart_001_01C518C8.266CDBC8 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: quoted-printable Hello, I send you a small patch about a "new" option called "permitopennet". The behaviour is the same as "permitopen" except the accept/deny statement is based ...
This is a multi-part message in MIME format.
------_=_NextPart_001_01C518C8.266CDBC8
Content-Type: text/plain;
charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
Hello,
I send you a small patch about a "new" option called "permitopennet".
The behaviour is the same as "permitopen" except the accept/deny
statement is based on this syntax : "netblock/netmaskorta[-portb]".
Moreover, I also added some useful log lines : the uid is logged while
doing port forwarding.
Sample conf :=20
permitopennet=3D"158.156.156.128/255.255.255.128:25-1024" ssh-dss
AAAAB3NzaC1kc3MAAACAbAehy7ov+HQvaSalGdJaNA3YAunrEI T3sqNqqs8CVIAgv2p ...
Logs :
eym59365 (uid:620) requests to connect to host 158.156.156.70 port 80,
but the request was denied.
eym59365 (uid:620) requests to connect to host 158.156.156.251 port 80,
and the request was accepted.
Waiting for your remarks or comments.
Lionel.
Ce message et toutes les pieces jointes (ci-apres le < message >) sont =
confidentiels et etablis a l'intention exclusive de ses destinataires. =
Toute utilisation de ce message non conforme a sa destination, toute =
diffusion ou toute publication, totale ou partielle, est interdite, sauf =
autorisation expresse. Si vous recevez ce message par erreur, merci de =
le detruire sans en conserver de copie et d'en avertir immediatement =
l'expediteur. Internet ne permettant pas de garantir l'integrite de ce =
message, la Caisse des depots et consignations decline toute =
responsabilite au titre de ce message s'il a ete modifie, altere, =
deforme ou falsifie.
This message and any attachments (the < message >) are confidential and =
intended solely for the addresses. Any use not in accord with its =
purpose, any dissemination or disclosure, either whole or partial, is =
prohibited without formal approval. If you receive this message in =
error, please delete it without storing any evidence and immediately =
notify the sender. Internet can not guarantee the integrity of this =
message, neither shall Caisse des depots et consignations be liable for =
the message if modified, altered, changed or falsified.
------_=_NextPart_001_01C518C8.266CDBC8
Content-Type: text/plain; charset="us-ascii"
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
Content-Disposition: inline
_______________________________________________
openssh-unix-dev mailing list
openssh-unix-dev@mindrot.org
http://www.mindrot.org/mailman/listi...enssh-unix-dev
------_=_NextPart_001_01C518C8.266CDBC8--
