From mboxrd@z Thu Jan  1 00:00:00 1970
Return-Path: <SRS0=T2Wi=DY=shaddybaddah.name=lithium-cygwin@sourceware.org>
Received: from smtp02.aussiebb.com.au (smtp02.aussiebb.com.au [IPv6:2403:5800:3:25::1002])
	by sourceware.org (Postfix) with ESMTPS id 2EAE43858D28
	for <cygwin@cygwin.com>; Mon,  7 Aug 2023 21:47:05 +0000 (GMT)
DMARC-Filter: OpenDMARC Filter v1.4.2 sourceware.org 2EAE43858D28
Authentication-Results: sourceware.org; dmarc=none (p=none dis=none) header.from=shaddybaddah.name
Authentication-Results: sourceware.org; spf=fail smtp.mailfrom=shaddybaddah.name
Received: from localhost (localhost.localdomain [127.0.0.1])
	by smtp02.aussiebb.com.au (Postfix) with ESMTP id 33EAC100964
	for <cygwin@cygwin.com>; Tue,  8 Aug 2023 07:46:58 +1000 (AEST)
X-Virus-Scanned: Debian amavisd-new at smtp02.aussiebb.com.au
Received: from smtp02.aussiebb.com.au ([127.0.0.1])
	by localhost (smtp02.aussiebb.com.au [127.0.0.1]) (amavisd-new, port 10024)
	with ESMTP id 6lPeLxJP-Zdl for <cygwin@cygwin.com>;
	Tue,  8 Aug 2023 07:46:58 +1000 (AEST)
Received: by smtp02.aussiebb.com.au (Postfix, from userid 116)
	id 2AF7B100A81; Tue,  8 Aug 2023 07:46:58 +1000 (AEST)
X-Spam-Checker-Version: SpamAssassin 3.4.6 (2021-04-09) on server2.sourceware.org
X-Spam-Level: 
X-Spam-Status: No, score=-3.3 required=5.0 tests=BAYES_00,KAM_DMARC_STATUS,NICE_REPLY_A,SPF_HELO_NONE,SPF_SOFTFAIL,TXREP autolearn=ham autolearn_force=no version=3.4.6
Received: from [192.168.1.36] (159-196-105-148.9fc469.syd.nbn.aussiebb.net [159.196.105.148])
	(using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits)
	 key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256)
	(No client certificate requested)
	(Authenticated sender: sb-beryllium@aussiebb.com.au)
	by smtp02.aussiebb.com.au (Postfix) with ESMTPSA id 81EC01016CC
	for <cygwin@cygwin.com>; Tue,  8 Aug 2023 07:46:57 +1000 (AEST)
Message-ID: <db4eb850-bb65-dc66-eeb4-00ff49cb6777@aussiebb.com.au>
Date: Tue, 8 Aug 2023 07:46:51 +1000
MIME-Version: 1.0
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:102.0) Gecko/20100101
 Thunderbird/102.13.0
Subject: Re: sshd_config AllowStreamLocalForwarding perm off / effectively
 privsep off
To: cygwin@cygwin.com
References: <883e0ae2-1ac7-1474-ba06-10d9de441390@aussiebb.com.au>
 <ZNEslrRdAQxRtVBD@calimero.vinschen.de>
From: Shaddy Baddah <lithium-cygwin@shaddybaddah.name>
In-Reply-To: <ZNEslrRdAQxRtVBD@calimero.vinschen.de>
Content-Type: text/plain; charset=UTF-8; format=flowed
Content-Transfer-Encoding: 7bit
List-Id: <cygwin.cygwin.com>

Hi,

On 8/08/2023 3:40 am, Corinna Vinschen via Cygwin wrote:
> On Aug  7 22:11, Shaddy Baddah via Cygwin wrote:
..

> 
> Yes, the parts of OpenSSH requiring descriptor passing are disabled in
> OpenSSH.
> 
>> Otherwise, what's the solution?
> 
> Solution for what?  What is it you want to do?

Reverse unix socket forwarding. Like this:

|~aC
|ssh> -R /tmp/p2:/tmp/p1
|Forwarding port.
|debug1: Remote: Server has disabled streamlocal forwarding.

Despite configuration and documentation, this can never work on Cygwin.

And I was looking to what an agreeable patch for OpenSSH might be. But
if I have read the situation right, by policy, there cannot be one for
Cygwin.

I do have a workaround, but it's suboptimal.

-- 
Regards,
Shaddy