Secure Shell
Re: I need something like ssh -D, but http proxy, not socks Nov 03 2010 03:39PM
Gustavo Castro (gcastrop gmail com) (1 replies)
Re[2]: I need something like ssh -D, but http proxy, not socks Nov 03 2010 07:31PM
Ilya Basin (basinilya gmail com) (1 replies)
Re: I need something like ssh -D, but http proxy, not socks Nov 03 2010 11:59PM
Darren Tucker (dtucker zip com au)
On 4/11/10 6:31 AM, Ilya Basin wrote:
> The SSH protocol itself supports names
> resolving on server (PuTTY is the proof), but ssh -D provides only
> socks4, which doesn't support names resolving on server.

That's not the case for OpenSSH; it's supported socks5 since 2003 (v3.7
and up) and socks4a since January last year (v5.2 and up). Both of
those support resolving names on the server side if the socks client
asks for it (eg in Firefox, about:config ->
network.proxy.socks_remote_dns=true).

[1] http://anoncvs.mindrot.org/index.cgi/openssh/channels.c?annotate=1.169
[2] http://anoncvs.mindrot.org/index.cgi/openssh/channels.c?annotate=1.280

--
Darren Tucker (dtucker at zip.com.au)
GPG key 8FF4FA69 / D9A3 86E9 7EEE AF4B B2D4 37C9 C982 80C7 8FF4 FA69
Good judgement comes with experience. Unfortunately, the experience
usually comes from bad judgement.

[ reply ]


 

Privacy Statement
Copyright 2010, SecurityFocus