SSH Guru
I am setting up OpenSSH_2.2.0p1 in my testing environment. One thing I
like to use ssh is to build a TCP tunnel with this command:
hostC:\>ssh -R listen-port:hostA:22 HostB so, the hostB will open a listen
port and hostC will connect to hostB's listen port with ssh in order to
login to HostA. But every time when I ran this command the listen port
open for localhost only:
localhost.2222 *.* 0 0 0 0 LISTEN
Is there any thing wrong in my config file or OpenSSH_2.2.0p1 cannot
support this feature.
Here is the sshd_config/ssh_config file for all 3 file. Hope there is
something wrong so I can simply corret it.
Thanx in advance.
JC
ssh_config
----------
# This is ssh client systemwide configuration file. This file provides
# defaults for users, and the values can be changed in per-user
configuration
# files or on the command line.
# Configuration data is parsed as follows:
# 1. command line options
# 2. user-specific file
# 3. system-wide file
# Any configuration value is only changed the first time it is set.
# Thus, host-specific definitions should be at the beginning of the
# configuration file, and defaults at the end.
# Site-wide defaults for various options
Host *
ForwardAgent yes
ForwardX11 yes
# RhostsAuthentication yes
# RhostsRSAAuthentication yes
# RSAAuthentication yes
PasswordAuthentication yes
# FallBackToRsh no
# UseRsh no
# BatchMode no
# CheckHostIP yes
# StrictHostKeyChecking no
IdentityFile ~/.ssh/identity
# Port 22
Protocol 2,1
# Cipher blowfish
# EscapeChar ~
sshd_config
-----------
# This is ssh server systemwide configuration file.
Port 22
Protocol 2,1
ListenAddress 0.0.0.0
#ListenAddress *
GatewayPorts yes
HostKey /usr/local/ssh/etc/ssh_host_key
ServerKeyBits 768
LoginGraceTime 600
KeyRegenerationInterval 3600
PermitRootLogin yes
#
# Don't read ~/.rhosts and ~/.shosts files
IgnoreRhosts yes
# Uncomment if you don't trust ~/.ssh/known_hosts for
RhostsRSAAuthentication
#IgnoreUserKnownHosts yes
StrictModes yes
X11Forwarding yes
X11DisplayOffset 10
PrintMotd yes
KeepAlive yes
# Logging
SyslogFacility AUTH
LogLevel INFO
#obsoletes QuietMode and FascistLogging
RhostsAuthentication no
#
# For this to work you will also need host keys in /etc/ssh_known_hosts
RhostsRSAAuthentication no
#
RSAAuthentication yes
# To disable tunneled clear text passwords, change to no here!
PasswordAuthentication yes
#PublickeyAuthentication yes
#PermitEmptyPasswords no
# Uncomment to disable s/key passwords
#SkeyAuthentication no
# To change Kerberos options
#KerberosAuthentication no
#KerberosOrLocalPasswd yes
#AFSTokenPassing no
#KerberosTicketCleanup no
# Kerberos TGT Passing does only work with the AFS kaserver
#KerberosTgtPassing yes
CheckMail no
#UseLogin no
#Subsystem sftp /usr/local/sbin/sftpd
#MaxStartups 10:30:60
