Re: Feature request - Control of IPv6 source address selection

[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]

 



On 29 August 2017 at 04:18, Brandon Applegate <brandon@xxxxxxxx> wrote:
>
> I’d love for there to be a config option to control IPv6 source address
> selection - specifically temp/privacy vs. non.


Can you use BindAddress [static_ipv6_address] in ~/.ssh/config?  Failing
that you can use ProxyCommand to implement whatever behaviour you want.

 The issue that I (and others over the years) see is that when there is a
> long lived ssh connection (i.e. days or > 1 week) - if this connection was
> sourced from a temp/privacy address - the socket will get killed when this
> address finally expires and falls off the interface.  Being able to turn a
> knob and get client connections initiated from a non-privacy address would
> be great.
>
> There have been some bug reports in downstream projects over time:
> https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=859270
> https://bugzilla.redhat.com/show_bug.cgi?id=512032


The interface from RFC5014 doesn't seem to be widely supported (Linux was
the only implementation I could find in a brief search).

-- 
Darren Tucker (dtucker at zip.com.au)
GPG key 11EAA6FA / A86E 3E07 5B19 5880 E860  37F4 9357 ECEF 11EA A6FA (new)
    Good judgement comes with experience. Unfortunately, the experience
usually comes from bad judgement.
_______________________________________________
openssh-unix-dev mailing list
openssh-unix-dev@xxxxxxxxxxx
https://lists.mindrot.org/mailman/listinfo/openssh-unix-dev




[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]

[Index of Archives]     [Linux ARM Kernel]     [Linux ARM]     [Linux Omap]     [Fedora ARM]     [IETF Annouce]     [Security]     [Bugtraq]     [Linux]     [Linux OMAP]     [Linux MIPS]     [ECOS]     [Asterisk Internet PBX]     [Linux API]

  Powered by Linux