summaryrefslogtreecommitdiff
path: root/system/openssh/disable-forwarding-by-default.patch
diff options
context:
space:
mode:
Diffstat (limited to 'system/openssh/disable-forwarding-by-default.patch')
-rw-r--r--system/openssh/disable-forwarding-by-default.patch16
1 files changed, 16 insertions, 0 deletions
diff --git a/system/openssh/disable-forwarding-by-default.patch b/system/openssh/disable-forwarding-by-default.patch
new file mode 100644
index 000000000..9d27926d9
--- /dev/null
+++ b/system/openssh/disable-forwarding-by-default.patch
@@ -0,0 +1,16 @@
+--- openssh-7.7p1/sshd_config.old 2018-04-02 00:38:28.000000000 -0500
++++ openssh-7.7p1/sshd_config 2018-07-29 03:08:16.340000000 -0500
+@@ -82,9 +82,10 @@
+ #UsePAM no
+
+ #AllowAgentForwarding yes
+-#AllowTcpForwarding yes
+-#GatewayPorts no
+-#X11Forwarding no
++# Feel free to re-enable these if your use case requires them.
++AllowTcpForwarding no
++GatewayPorts no
++X11Forwarding no
+ #X11DisplayOffset 10
+ #X11UseLocalhost yes
+ #PermitTTY yes
generated by cgit v1.2.3-70-g09d2 (git 2.46.0) at 2024-11-07 07:09:50 +0000