PuTTY semi-bug portfwd-invalid-origin

This is a mirror. The primary PuTTY web site can be found here.

Home | Licence | FAQ | Docs | Download | Keys | Links
Mirrors | Updates | Feedback | Changes | Wishlist | Team

summary: Some servers reject SSH-2 tunnels due to invalid originator IP address
class: semi-bug: This might or might not be a bug, depending on your precise definition of what a bug is.
difficulty: fun: Just needs tuits, and not many of them.
present-in: 0.58
fixed-in: r6477 2005-12-08 (0.59) (0.60) (0.61) (0.62) (0.63) (0.64)

In SSH-2, the local-to-remote port-forwarding request is defined by secsh-connect to contain an "originator IP address" and "originator port", which identify to the server where the connection the client received came from.

PuTTY has always taken the view that this is none of the server's business, and sent the bogus IP address client-side-connection and port 0.

Apparently, some servers take exception to this (with some justification) and refuse the forwarding. Specifically, a problem has reported with SSH Tectia Server (T) for Windows, version 5.0.0-844, and also with F-Secure SSH for Unix, version 3.1.0. Using 0.0.0.0 instead appears to mollify these servers.

Audit trail for this semi-bug.


If you want to comment on this web site, see the Feedback page.
(last revision of this bug record was at 2007-08-02 20:27:15 +0000)