bugzilla-daemon at mindrot
Jul 19, 2012, 6:50 PM
Post #1 of 1
[Bug 1295] [PATCH] Transparent proxy support on Linux
--- Comment #17 from Damien Miller <djm [at] mindrot> ---
I'd like to get this done soon, but the current patch has bitrotted -
particularly in the pf department.
IMO this would be best as a helper program that:
1) accept()ed connections redirected to it by the packet filter
2) determined (by OS-specific means) the original address
3) connected to a running ssh via it's multiplexing socket and passes
in the accepted fd using MUX_C_NEW_STDIO_FWD
This makes the helper really small and simple, which is nice because it
looks like it will need privileges of some sort on OpenBSD at least.
You are receiving this mail because:
You are watching the assignee of the bug.
You are watching someone on the CC list of the bug.
openssh-bugs mailing list
openssh-bugs [at] mindrot