Re: Dropbear 2018.76

2018-03-02 Thread Konstantin Tokarev 


02.03.2018, 00:18, "Steffen Nurpmeso" :
> Hello Matt.
>
> Matt Johnston  wrote:
>  |> On Wed 28/2/2018, at 12:59 am, Steffen Nurpmeso  \
>  |> wrote:
>  |> And yes, i am still using such grumpy networks with VMs, so please
>  |> let me post the "git am" mailbox that adds support for proxy-over-
>  |> localhost.
>  ...
>  |Thanks for the patch, though I'm not sure it's worth adding this as \
>  |a special case - can't the same thing be
>  |achieved with dbclient -J "nc localhost port" ?
>
> Yes i think so, but this requires context switching or
> at least quite some I/O that is useless. Some boxes
> also do not have nc(1) by default. And all that just because of
> a little name switch (that is impossible without this patch).
>
>  |Adding proxycommand as a -o option might be worthwhile though, so it \
>  |can pass to scp.
>
> ok?? Ok, so how about "-o ProxyLocalhost=PORT"?

There is no such option in openssh

> Find that attached at your will.
> Ciao,
>
> --steffen
> |
> |Der Kragenbaer, The moon bear,
> |der holt sich munter he cheerfully and one by one
> |einen nach dem anderen runter wa.ks himself off
> |(By Robert Gernhardt)

-- 
Regards,
Konstantin

Re: Dropbear 2018.76

2018-03-02 Thread Steffen Nurpmeso 
Matt Johnston  wrote:
 |On 2 March 2018 6:17:42 pm AWST, Konstantin Tokarev  \
 |wrote:
 |>02.03.2018, 00:18, "Steffen Nurpmeso" :
 |>>> ok?? Ok, so how about "-o ProxyLocalhost=PORT"?
 |>
 |>There is no such option in openssh
 |
 |I'm not opposed to adding options just for dropbear. Another alternative \
 |that might be more flexible would be 
 |
 |-o keyhostname=example.com localhost:7766
 |
 |With example.com used for known_hosts matching. Then the proxy tcp \
 |destination could be a remote host too if desired. Thoughts?

I do not like the hunk in cli-runopts.c, line 681.  The test is
now useless and depends on the order on the command line.

Regarding yours: isn't that much harder to implement?  The nice
thing about this patch is that it is so small and could be carried
along for over four years without having a look :).  I mean, today
with all those docker images and entire vde2 local networks etc.
the need as such can easily be seen as something ridiculous,
i know...

Ciao!

--steffen
|
|Der Kragenbaer,The moon bear,
|der holt sich munter   he cheerfully and one by one
|einen nach dem anderen runter  wa.ks himself off
|(By Robert Gernhardt)

Re: Dropbear 2018.76

2018-03-02 Thread Steffen Nurpmeso 
I want to point out that Konstantin Tokarev was Cc:d in my
message, his name has been stripped by the ML.

--steffen
|
|Der Kragenbaer,The moon bear,
|der holt sich munter   he cheerfully and one by one
|einen nach dem anderen runter  wa.ks himself off
|(By Robert Gernhardt)