Add a sshd_config DisableForwaring option that disables X11, agent, - wireguard-openbsd - WireGuard implementation for the OpenBSD kernel

diff options

author	djm <djm@openbsd.org>	2016-11-30 03:00:05 +0000
committer	djm <djm@openbsd.org>	2016-11-30 03:00:05 +0000
commit	bba1ec4c1e326f67b2ff84f542d993f520876a57 (patch)
tree	65bb07513f7119074cb5427ff19aad4398768069 /usr.bin/ssh/ssh-agent.c
parent	When a forced-command appears in both a certificate and an (diff)
download	wireguard-openbsd-bba1ec4c1e326f67b2ff84f542d993f520876a57.tar.xz wireguard-openbsd-bba1ec4c1e326f67b2ff84f542d993f520876a57.zip

Add a sshd_config DisableForwaring option that disables X11, agent,

TCP, tunnel and Unix domain socket forwarding, as well as anything else we might implement in the future. This, like the 'restrict' authorized_keys flag, is intended to be a simple and future-proof way of restricting an account. Suggested as a complement to 'restrict' by Jann Horn; ok markus@

Diffstat (limited to 'usr.bin/ssh/ssh-agent.c')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: