I'd been hoping to move all of our site to ssh protocol 2 whilst we are still small enough to do this without serious pain, however the lack of authentication and connection forwarding is making that difficult at present. I see the current (2.2.0p1) code base does not have the code on either client or server side for ssh2 to handle tunneled connections or authentication agent. Is this being worked on, scheduled for work, worth me putting time into, or is there good reason to hold off at present? [Actually I guess its more a openssh issue rather than portable openssh issue... but I'm not on that list and don't use openbsd.] Nigel. -- [ - Opinions expressed are personal and may not be shared by VData - ] [ Nigel Metheringham Nigel.Metheringham at VData.co.uk ] [ Phone: +44 1423 850000 Fax +44 1423 858866 ]
[following up to myself...] Embarrassingly I then noticed the current set of posts from Jarno Huuskonen on port forwarding support... I was concentrating on authentication agent forwarding and then rolled port forwarding because I saw from the code it was also missing.... without having picked it up in the posts, Nigel. -- [ - Opinions expressed are personal and may not be shared by VData - ] [ Nigel Metheringham Nigel.Metheringham at VData.co.uk ] [ Phone: +44 1423 850000 Fax +44 1423 858866 ]
agent forwarding is not in ssh2 since we don't do the officical agent protocol (there is no spec) and since we would have to do our own proprietary protocol for this. but if someone sends 'clean' patches, we can add this to openssh, of course. On Mon, Oct 16, 2000 at 05:14:14PM +0100, Nigel Metheringham wrote:> I'd been hoping to move all of our site to ssh protocol 2 whilst we are > still small enough to do this without serious pain, however the lack of > authentication and connection forwarding is making that difficult at > present. > > I see the current (2.2.0p1) code base does not have the code on either > client or server side for ssh2 to handle tunneled connections or > authentication agent. Is this being worked on, scheduled for work, > worth me putting time into, or is there good reason to hold off at > present? > > [Actually I guess its more a openssh issue rather than portable openssh > issue... but I'm not on that list and don't use openbsd.] > > Nigel. > -- > [ - Opinions expressed are personal and may not be shared by VData - ] > [ Nigel Metheringham Nigel.Metheringham at VData.co.uk ] > [ Phone: +44 1423 850000 Fax +44 1423 858866 ] > > >