On Tue, Jan 17, 2017 at 8:05 PM, Romain Vimont <rom@xxxxxxxxx> wrote:
[..]
> So if I understand correctly, making "ssh -D" create a "full" SOCKS5
> server, including UDP relay¹, would require to add a new SSH request
> type (like "relay-udp")?
Right. SSH has an extension mechanism: message types with an
@somedomain.com are "vendor extensions" that do not require IETF
standardization so it'd be relay-udp@$something. It'd need some kind
of association tracking for UDP host/port pairs to replace the stuff
the kernel does for us with TCP, so it'd probably more complicated to
implement than the existing SOCKS/direct-tcpip support.
--
Darren Tucker (dtucker at zip.com.au)
GPG key 11EAA6FA / A86E 3E07 5B19 5880 E860 37F4 9357 ECEF 11EA A6FA (new)
Good judgement comes with experience. Unfortunately, the experience
usually comes from bad judgement.
_______________________________________________
openssh-unix-dev mailing list
openssh-unix-dev@xxxxxxxxxxx
https://lists.mindrot.org/mailman/listinfo/openssh-unix-dev
