-
Committer:
Damien Miller
-
Author(s):
djm@openbsd.org
-
Date:
2016-11-30 08:44:01 UTC
-
Revision ID:
git-v1:7844f357cdd90530eec81340847783f1f1da010b
upstream commit
Add a sshd_config DisableForwaring option that disables
X11, agent, TCP, tunnel and Unix domain socket forwarding, as well as
anything else we might implement in the future.
This, like the 'restrict' authorized_keys flag, is intended to be a
simple and future-proof way of restricting an account. Suggested as
a complement to 'restrict' by Jann Horn; ok markus@
Upstream-ID: 203803f66e533a474086b38a59ceb4cf2410fcf7