Package: mosh, sslh
Severity: minor

mosh can't be used on hosts that hide their ssh services behind sslh.

when connecting to such a host, mosh displays

> mosh: Nothing received from server on UDP port 60001.

then:

> mosh: Nothing received from server on UDP port 60001. (... s without
> contact)

the problem seems to be caused by the way the ssh connection is
established in sslh: sslh forwards the connection by creating another
tcp stream from itself to the ssh server, causing SSH_CONNECTION have
"127.0.0.1" in both source and destination ip fields -- and mosh, when
started with -s, binds to the address it finds in SSH_CONNECTION.

the mosh server seems to get started with -s automatically (even though
the client seems to just call "mosh-server", it shows up in the process
list as `mosh-server new -s ...`).


several solutions seem feasible, in increasing order of my preference:

* provide a way for the client to specify he doesn't want to use the
  `-s` option server-side (fix on mosh side)
* have a server-side configuration option to turn off the `-s` flag for
  the host (better, as it has to be done only once per host) (fix on
  mosh side)
* provide a way to find out the real address (fix on ssh side)


as a workaround, i have provided a way around sslh for clients to
connect directly, but that's not usually what an sslh user wants to do.

-- System Information:
Debian Release: wheezy/sid
  APT prefers unstable
  APT policy: (500, 'unstable'), (1, 'experimental')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 3.4-trunk-amd64 (SMP w/2 CPU cores)
Locale: LANG=en_GB.UTF-8, LC_CTYPE=en_GB.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash

Versions of packages mosh depends on:
ii  libc6           2.13-35
ii  libgcc1         1:4.7.1-7
ii  libio-pty-perl  1:1.08-1+b2
ii  libprotobuf7    2.4.1-3
ii  libstdc++6      4.7.1-7
ii  libtinfo5       5.9-10
ii  libutempter0    1.1.5-4
ii  openssh-client  1:6.0p1-3
ii  zlib1g          1:1.2.7.dfsg-13

mosh recommends no packages.

mosh suggests no packages.

-- no debconf information

Attachment: signature.asc
Description: Digital signature

Reply via email to