1*a0ee8cc6SDag-Erling Smørgrav# $OpenBSD: proxy-connect.sh,v 1.7 2014/05/03 18:46:14 dtucker Exp $ 2ce3adf43SDag-Erling Smørgrav# Placed in the Public Domain. 3ce3adf43SDag-Erling Smørgrav 4ce3adf43SDag-Erling Smørgravtid="proxy connect" 5ce3adf43SDag-Erling Smørgrav 6*a0ee8cc6SDag-Erling Smørgravmv $OBJ/sshd_proxy $OBJ/sshd_proxy.orig 7*a0ee8cc6SDag-Erling Smørgrav 8*a0ee8cc6SDag-Erling Smørgravfor ps in no yes; do 9*a0ee8cc6SDag-Erling Smørgrav cp $OBJ/sshd_proxy.orig $OBJ/sshd_proxy 10*a0ee8cc6SDag-Erling Smørgrav echo "UsePrivilegeSeparation $ps" >> $OBJ/sshd_proxy 11*a0ee8cc6SDag-Erling Smørgrav 12ce3adf43SDag-Erling Smørgrav for p in 1 2; do 13*a0ee8cc6SDag-Erling Smørgrav for c in no yes; do 14*a0ee8cc6SDag-Erling Smørgrav verbose "plain username protocol $p privsep=$ps comp=$c" 15*a0ee8cc6SDag-Erling Smørgrav opts="-$p -oCompression=$c -F $OBJ/ssh_proxy" 16*a0ee8cc6SDag-Erling Smørgrav SSH_CONNECTION=`${SSH} $opts 999.999.999.999 'echo $SSH_CONNECTION'` 17ce3adf43SDag-Erling Smørgrav if [ $? -ne 0 ]; then 18*a0ee8cc6SDag-Erling Smørgrav fail "ssh proxyconnect protocol $p privsep=$ps comp=$c failed" 19ce3adf43SDag-Erling Smørgrav fi 20ce3adf43SDag-Erling Smørgrav if [ "$SSH_CONNECTION" != "UNKNOWN 65535 UNKNOWN 65535" ]; then 21*a0ee8cc6SDag-Erling Smørgrav fail "bad SSH_CONNECTION protocol $p privsep=$ps comp=$c" 22ce3adf43SDag-Erling Smørgrav fi 23ce3adf43SDag-Erling Smørgrav done 24*a0ee8cc6SDag-Erling Smørgrav done 25*a0ee8cc6SDag-Erling Smørgravdone 26ce3adf43SDag-Erling Smørgrav 27ce3adf43SDag-Erling Smørgravfor p in 1 2; do 28*a0ee8cc6SDag-Erling Smørgrav verbose "username with style protocol $p" 29ce3adf43SDag-Erling Smørgrav ${SSH} -$p -F $OBJ/ssh_proxy ${USER}:style@999.999.999.999 true || \ 30ce3adf43SDag-Erling Smørgrav fail "ssh proxyconnect protocol $p failed" 31ce3adf43SDag-Erling Smørgravdone 32