bugzilla-daemon at mindrot.org
2006-Dec-05 01:16 UTC
[Bug 1267] PermitOpen - Multiple forwards don't works
http://bugzilla.mindrot.org/show_bug.cgi?id=1267
Summary: PermitOpen - Multiple forwards don't works
Product: Portable OpenSSH
Version: v4.5p1
Platform: ix86
OS/Version: Cygwin on NT/2k
Status: NEW
Severity: security
Priority: P2
Component: sshd
AssignedTo: bitbucket at mindrot.org
ReportedBy: galan_j at hotmail.com
I use the 'PermitOpen' keyword in 'sshd_config' configuration
file in
sshd 4.5p1 Cygwin implementation for specify what TCP port forward are
permitted. This keyword work fine when I define only one port forward
but when I specify multiple ports forward only the first one is
considered. I write the keyword originally as:
PermitOpen 192.168.0.1:8091 192.168.0.2:2560 192.168.0.3:25
192.168.0.3:110
I change it with commas, with multiple permitopen keyword, with ?, etc.
and in all occasion only the first forward is authorized.
------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.
bugzilla-daemon at mindrot.org
2006-Dec-12 05:38 UTC
[Bug 1267] PermitOpen - Multiple forwards don't works
http://bugzilla.mindrot.org/show_bug.cgi?id=1267
dtucker at zip.com.au changed:
What |Removed |Added
----------------------------------------------------------------------------
Platform|ix86 |All
OS/Version|Cygwin on NT/2k |All
Status|NEW |ASSIGNED
------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.
bugzilla-daemon at mindrot.org
2006-Dec-12 05:39 UTC
[Bug 1267] PermitOpen - Multiple forwards don't works
http://bugzilla.mindrot.org/show_bug.cgi?id=1267 ------- Comment #1 from dtucker at zip.com.au 2006-12-12 16:39 ------- Created an attachment (id=1220) --> (http://bugzilla.mindrot.org/attachment.cgi?id=1220&action=view) Fix PermitOpen for multiple entries Does this patch resolve your problem? ------- You are receiving this mail because: ------- You are the assignee for the bug, or are watching the assignee.
bugzilla-daemon at mindrot.org
2006-Dec-13 16:31 UTC
[Bug 1267] PermitOpen - Multiple forwards don't works
http://bugzilla.mindrot.org/show_bug.cgi?id=1267
galan_j at hotmail.com changed:
What |Removed |Added
----------------------------------------------------------------------------
Status|ASSIGNED |RESOLVED
Resolution| |FIXED
------- Comment #2 from galan_j at hotmail.com 2006-12-14 03:31 -------
(In reply to comment #1)> Created an attachment (id=1220)
--> (http://bugzilla.mindrot.org/attachment.cgi?id=1220&action=view)
[details]> Fix PermitOpen for multiple entries
> Does this patch resolve your problem?
Yes work fine. The statement must be in the format PermitOpen
192.168.0.1:8091 192.168.0.2:2560 192.168.0.3:25 192.168.0.3:110 Other
format (with commas between the IPs, using = before the first IP or
enclosed the Ips) don?t work or generate and error in the service
start.
------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.
Apparently Analagous Threads
- [Bug 1949] New: PermitOpen none option
- [Bug 1513] New: CIDR address/masklen matching support for permitopen=
- [Bug 2038] New: permitopen functionality but for remote forwards
- [Bug 1267] PermitOpen - Multiple forwards don't works
- [Bug 1267] PermitOpen - Multiple forwards don't works