Summary: | openssh remote port binding weakness | ||
---|---|---|---|
Product: | Gentoo Linux | Reporter: | norbert kamenicky <noro> |
Component: | Current packages | Assignee: | Gentoo Linux bug wranglers <bug-wranglers> |
Status: | VERIFIED DUPLICATE | ||
Severity: | normal | ||
Priority: | High | ||
Version: | 2005.1 | ||
Hardware: | All | ||
OS: | Linux | ||
Whiteboard: | |||
Package list: | Runtime testing required: | --- |
Description
norbert kamenicky
2006-05-12 06:03:09 UTC
> if GatewayPorts option is disabled (default), port binds only to localhost,
I'd suggest to read the fine manual:
man 5 sshd_config
<snip>
GatewayPorts
Specifies whether remote hosts are allowed to connect to ports forwarded for the client. By default, sshd binds remote port forwardings to the loopback address. This prevents other remote hosts from connecting to forwarded
ports. GatewayPorts can be used to specify that sshd should allow remote port forwardings to bind to non-loopback addresses, thus allowing other hosts to connect. The argument may be ``no'' to force remote port forwardings to be
available to the local host only, ``yes'' to force remote port forwardings to bind to the wildcard address, or ``clientspecified'' to allow the client to select the address to which the forwarding is bound. The default is ``no''.
</snip>
So - where exactly is the bug?
*** Bug 133115 has been marked as a duplicate of this bug. *** *** Bug 133116 has been marked as a duplicate of this bug. *** Reopen to redupe. *** This bug has been marked as a duplicate of 133115 *** . |