search for: ident_protocol

...hine is multi-user, or to -R forwardings when the sshd server machine is multi-user. Please secure IP forwardings by checking the connecting user, ensuring same user as that of the ssh client, or the one logged in to sshd. These checks would be similar to say identd: https://en.wikipedia.org/wiki/Ident_protocol easy on Linux (via netlink calls or looking in /proc/net/tcp), and probably possible on Windows and MacOS. (I do not know about others.) If it would help, I may try to provide patches for Linux. Thanks, Paul -- Paul Szabo psz at maths.usyd.edu.au www.maths.usyd.edu.au/u/psz School of...

Hi, Question: Can a TCP server (running on the same host as the OpenSSH server) know the user id/name of a user forwarding an TCP port ? I.e. if someone on some client machine does ssh -L9999:localhost:9999 someuser at somehost nc localhost 9999 and a service accepts the connection on port localhost:9999 on somehost, can it somehow safely read out the user name "someuser"? Long