[sslh] sslh-1.12 released!
Seblu
ml at seblu.net
Tue May 8 15:07:09 CEST 2012
On Tue, May 8, 2012 at 12:41 PM, Yves Rutschle <yves at naryves.com> wrote:
> Hello everyone,
>
> Two new big features, and two small changes, for this release:
>
> Added support for configuration file.
>
> New protocol probes can be defined using regular
> expressions that match the first packet sent by the
> client.
>
> sslh now connects timed out connections to the first
> configured protocol instead of 'ssh' (just make sure
> ssh is the first defined protocol).
>
> sslh now tries protocols in the order in which they
> are defined (just make sure sslh is the last defined
> protocol).
>
> I wouldn't be surprised if there are corner cases with the configuration file
> that aren't ironed out, and I'm interested in all feedback on the configuration
> file (is it clear? is it useless?) and the regular expression probe code (does
> it work for you? is the documentation clear enough?)
>
Can we have a command line option to start in daemon mode?
Currently we can force foreground mode in systemd initscripts by
calling sslh --foreground -F /etc/sslh.conf.
With classical sysv initscripts we cannot call something like sslh
--daemon -F /etc/sslh.conf which supersede foreground parameter inside
configuration.
You should write pid file before droping privilege, /var/run is not
writable by users.
# sslh -F /etc/sslh.conf -u nobody
/var/run/sslh.pid: Permission denied
--
Sébastien Luttringer
www.seblu.net
More information about the sslh
mailing list