Bugzilla – Attachment 2660 Details for
Bug 2423
[PATCH] ssh man page has incomplete list of unix socket forwarding options
Home
|
New
|
Browse
|
Search
|
[?]
|
Reports
|
Requests
|
Help
|
New Account
|
Log In
[x]
|
Forgot Password
Login:
[x]
[patch]
patch for ssh.1
ssh.1.patch (text/plain), 3.94 KB, created by
Daniel Black
on 2015-07-05 18:01:38 AEST
(
hide
)
Description:
patch for ssh.1
Filename:
MIME Type:
Creator:
Daniel Black
Created:
2015-07-05 18:01:38 AEST
Size:
3.94 KB
patch
obsolete
>diff --git a/ssh.1 b/ssh.1 >index df7ac86..f1822ff 100644 >--- a/ssh.1 >+++ b/ssh.1 >@@ -53,6 +53,9 @@ > .Op Fl I Ar pkcs11 > .Op Fl i Ar identity_file > .Op Fl L Oo Ar bind_address : Oc Ns Ar port : Ns Ar host : Ns Ar hostport >+.Op Fl L Oo Ar bind_address : Oc Ns Ar port : Ns Ar host_socket >+.Op Fl L Ar unix_socket : Ns Ar host : Ns Ar hostport >+.Op Fl L Ar unix_socket : Ns Ar host_socket > .Op Fl l Ar login_name > .Op Fl m Ar mac_spec > .Op Fl O Ar ctl_cmd >@@ -60,6 +63,9 @@ > .Op Fl p Ar port > .Op Fl Q Cm cipher | cipher-auth | mac | kex | key | protocol-version > .Op Fl R Oo Ar bind_address : Oc Ns Ar port : Ns Ar host : Ns Ar hostport >+.Op Fl R Oo Ar bind_address : Oc Ns Ar port : Ns Ar host_socket >+.Op Fl R Ar unix_socket : Ns Ar host : Ns Ar hostport >+.Op Fl R Ar unix_socket : Ns Ar host_socket > .Op Fl S Ar ctl_path > .Op Fl W Ar host : Ns Ar port > .Op Fl w Ar local_tun Ns Op : Ns Ar remote_tun >@@ -302,18 +308,38 @@ Disables forwarding (delegation) of GSSAPI credentials to the server. > .Ar port : host : hostport > .Sm on > .Xc >-Specifies that the given port on the local (client) host is to be >-forwarded to the given host and port on the remote side. >-This works by allocating a socket to listen to >+.It Fl L Xo >+.Sm off >+.Oo Ar bind_address : Oc >+.Ar port : host_socket >+.Sm on >+.Xc >+.It Fl L Xo >+.Sm off >+.Ar unix_socket : host : hostport >+.Sm on >+.Xc >+.It Fl L Xo >+.Sm off >+.Ar unix_socket : host_socket >+.Sm on >+.Xc >+Specifies that connections to the given port or unix socket on the local >+(client) host is to be forwarded to the given host and port, or unix_socket, >+on the remote side. This works by allocating a socket to listen to either, a > .Ar port > on the local side, optionally bound to the specified >-.Ar bind_address . >-Whenever a connection is made to this port, the >+.Ar bind_address , >+or to a >+.Ar unix_socket . >+Whenever a connection is made to the local port or socket, the > connection is forwarded over the secure channel, and a connection is >-made to >+made to either, > .Ar host > port >-.Ar hostport >+.Ar hostport , >+or the unix socket >+.Ar host_socket , > from the remote machine. > Port forwardings can also be specified in the configuration file. > IPv6 addresses can be specified by enclosing the address in square brackets. >@@ -523,16 +549,36 @@ Causes most warning and diagnostic messages to be suppressed. > .Ar port : host : hostport > .Sm on > .Xc >-Specifies that the given port on the remote (server) host is to be >-forwarded to the given host and port on the local side. >-This works by allocating a socket to listen to >+.It Fl R Xo >+.Sm off >+.Oo Ar bind_address : Oc >+.Ar port : host_socket >+.Sm on >+.Xc >+.It Fl R Xo >+.Sm off >+.Ar unix_socket : host : hostport >+.Sm on >+.Xc >+.It Fl R Xo >+.Sm off >+.Ar unix_socket : host_socket >+.Sm on >+.Xc >+Specifies that the given port or unix socket on the remote (server) host is >+to be forwarded to the given host and port, or unix socket, on the local side. >+This works by allocating a socket to listen to either > .Ar port >-on the remote side, and whenever a connection is made to this port, the >-connection is forwarded over the secure channel, and a connection is >-made to >+or >+.Ar unix_socket >+on the remote side, and whenever a connection is made to this port/unix >+socket, the connection is forwarded over the secure channel, and a connection >+is made to either, > .Ar host > port >-.Ar hostport >+.Ar hostport , >+or >+.Ar host_socket , > from the local machine. > .Pp > Port forwardings can also be specified in the configuration file. >@@ -540,9 +586,8 @@ Privileged ports can be forwarded only when > logging in as root on the remote machine. > IPv6 addresses can be specified by enclosing the address in square brackets. > .Pp >-By default, the listening socket on the server will be bound to the loopback >-interface only. >-This may be overridden by specifying a >+By default for TCP based sockets, the listening socket on the server will be >+bound to the loopback interface only. This may be overridden by specifying a > .Ar bind_address . > An empty > .Ar bind_address ,
<b>You cannot view the attachment while viewing its details because your browser does not support IFRAMEs. <a href="attachment.cgi?id=2660">View the attachment on a separate page</a>.</b>
View Attachment As Diff
View Attachment As Raw
Actions:
View
|
Diff
Attachments on
bug 2423
: 2660