Re: Restrict tunnels?
From: Darren Tucker (dtucker_at_dodgy.net.au)
Date: 12/19/04
- Previous message: Hannes Erven: "Restrict tunnels?"
- In reply to: Hannes Erven: "Restrict tunnels?"
- Next in thread: Hannes Erven: "Re: Restrict tunnels?"
- Reply: Hannes Erven: "Re: Restrict tunnels?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: 19 Dec 2004 04:30:15 GMT
In article <41c4dfa4@e-post.inode.at>, Hannes Erven <h.e@gmx.at> wrote:
>I was looking for an option in openssh to restrict tunneling to allow
>tunnels only to some, defined destinations. I do not want to disable
>tunneling, but e.g. have tunnels only to machines in a certain subnet,
>or to some certain ports.
[...]
>Is there any such functionality in openssh, or do you have another idea
>at your fingertips? ;-)
If you're using key-based authentication then you can use the
"permitopen" option in authorized_keys, see the sshd(8) man page.
Otherwise, no, the functionality doesn't exist in the vanilla
distribution. There were patches to implement this kind of thing
through Keynote policies but AFAIK there's none that work with current
versions of OpenSSH.
--
Darren Tucker (dtucker at zip.com.au)
GPG key 8FF4FA69 / D9A3 86E9 7EEE AF4B B2D4 37C9 C982 80C7 8FF4 FA69
Good judgement comes with experience. Unfortunately, the experience
usually comes from bad judgement.
- Previous message: Hannes Erven: "Restrict tunnels?"
- In reply to: Hannes Erven: "Restrict tunnels?"
- Next in thread: Hannes Erven: "Re: Restrict tunnels?"
- Reply: Hannes Erven: "Re: Restrict tunnels?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
