On Thu, 20 Apr 2023 at 12:04, Yuri <yuri@xxxxxxxxx> wrote:
[...]
> I suggest that OpenSSH adds the SSL tunneling feature:
I don't think this is something we would be interested in doing.
1) it's a pretty niche feature.
2) it would require adding a dependency on OpenSSL's libssl which we
currently do not have.
3) as you note, there are already ways to do this kind of thing via
inetd/proxycommand and/or stunnel.
4) I don't think we'd want to play whack-a-mole with the middlebox
vendors anyway.
If I was trying to do this I'd probably start with stunnel and look at
adding the feature you want to that.
--
Darren Tucker (dtucker at dtucker.net)
GPG key 11EAA6FA / A86E 3E07 5B19 5880 E860 37F4 9357 ECEF 11EA A6FA
Good judgement comes with experience. Unfortunately, the experience
usually comes from bad judgement.
_______________________________________________
openssh-unix-dev mailing list
openssh-unix-dev@xxxxxxxxxxx
https://lists.mindrot.org/mailman/listinfo/openssh-unix-dev
