Date: Wed, 28 Feb 2001 20:28:02 -0700 (MST) From: Nate Williams <nate@yogotech.com> To: "Aaron D.Gifford" <agifford@infowest.com> Cc: freebsd-security@FreeBSD.ORG Subject: RE: ssh tricks (was Re: ssh -t <host> /bin/sh trick (was Re: ftp Message-ID: <15005.49602.104109.812735@nomad.yogotech.com> In-Reply-To: <01022819094900.04839@jardan.infowest.com> References: <01022819094900.04839@jardan.infowest.com>
next in thread | previous in thread | raw e-mail | index | archive | help
> Are you aware that the FreeBSD SSH installation by default has TCP > forwarding enabled? Yep. Note, the commercial version SSH1 had the ability to turn on/off port forwarding on a per-user and/or a per-port options. So, you could disable/enable all ports but one, and then enable/disable the particular port for certain users. It was pretty nice for setting up 'truly' secure systems that still allowed some flexibility. Too bad this doesn't exist in OpenSSH (or if it does, I haven't found it). Nate To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?15005.49602.104109.812735>