Jim Wyllie
8ec6daf02a
Added a shell script to make a .deb package
2014-09-15 14:14:52 +10:00
Jim Wyllie
e2507f86d5
Added a control file for the Debian package
2014-09-15 14:14:52 +10:00
Jim Wyllie
e4fe62de3c
Added a sample prefixes file
2014-09-15 14:14:52 +10:00
Jim Wyllie
734f32d112
Sample tunnel configuration
2014-09-15 14:14:52 +10:00
Jim Wyllie
a34e106b55
Changed the sshuttle binary to point to install
2014-09-15 14:14:52 +10:00
Jim Wyllie
e6e80f1f04
Changed the file to be more "canonical"
2014-09-15 14:14:52 +10:00
Jim Wyllie
32865bd2dd
Added the PyXAPI requirement to the readme
2014-09-15 14:14:52 +10:00
Jim Wyllie
2f11f50bc2
Adding more robust exit codes
2014-09-15 14:14:52 +10:00
Jim Wyllie
a95491765d
Added -s to accept subnets from a config file
2014-09-15 14:14:52 +10:00
Jim Wyllie
d8754dc3a0
First version; still has debugging
2014-09-15 14:14:52 +10:00
Jim Wyllie
3956a5df94
Moved docs out of the src directory
2014-09-15 14:14:52 +10:00
Jim Wyllie
7442eb61e9
Mass relocation of files to their own subdirectory
2014-09-15 14:14:51 +10:00
Jim Wyllie
6107abf10f
Fixed a bug where lack of IPv6 destination = fatal
...
There was a problem where trying to bind .v4 and .v6 listeners would set them
to None if there was nothing to bind (if, say, you weren't binding an IPv6
listener). Later, the code then would try to call a member function of the
listener. The member function would not do anything if there was no listener,
but trying to dereference None yielded the broken behavior.
2014-09-15 14:14:51 +10:00
Brian May
5e8ad544ee
TProxy UDP support, including DNS.
2011-08-26 09:53:59 +10:00
Brian May
20254bab57
TProxy IPv6 support.
2011-07-11 11:20:52 +10:00
Brian May
f41c6b62e5
TProxy support as well as NAT support.
2011-07-11 11:20:51 +10:00
Brian May
9a7412c08f
More changes to simplify the upcomming IPv6 patch.
2011-07-11 11:20:50 +10:00
Brian May
c6200eecdc
Choose which method to use for intercepting traffic.
2011-07-11 11:16:51 +10:00
Brian May
55f86a8b3f
Rewrite binding code. DNS port may now be different from TCP port.
2011-07-11 11:16:50 +10:00
Brian May
e7caae8126
Make it clear ports are for IPv4.
2011-07-11 11:16:49 +10:00
Brian May
4db9b372c2
Make iptables functions work with any table, not just nat.
2011-07-11 11:16:48 +10:00
Brian May
061e6a0933
Keep track of address family address belongs too.
2011-06-16 14:51:34 +10:00
Brian May
50849b86b0
This hack is IPv4 specific, ensure it doesn't get used for other
...
address families.
2011-06-16 14:51:34 +10:00
Brian May
6b7cf770f5
Improve debugging.
2011-06-16 14:42:15 +10:00
Brian May
b26e1ee652
Introduce independent_listener, will be used for both IPv4 and IPv6
...
connections.
2011-06-06 11:14:28 +10:00
Brian May
6500067905
When DNS response received, MUX channel no longer required. Delete it.
2011-06-06 11:12:23 +10:00
Brian May
50c2b86f15
Rename onaccept to onaccept_tcp as it is tcp specific.
2011-06-06 10:54:57 +10:00
Brian May
97dca42291
Rename dnslistener to dns_listener for consistency with tcp_listener.
2011-06-06 10:44:38 +10:00
Brian May
6e53b07002
Rename listener to tcp_listener, as it is TCP specific.
2011-06-06 10:43:39 +10:00
Brian May
08bd1dca46
Rename TCP specific commands to clarify they are TCP specific.
2011-06-06 10:39:50 +10:00
Brian May
94566b5efc
Split expiration into handling into another function.
2011-06-06 10:23:04 +10:00
Brian May
a8b71f6387
Move nested functions to top level.
2011-05-31 00:42:48 -04:00
Brian May
4bfcd7091d
Send DNS request back on same sock we received it on.
2011-05-31 00:39:17 -04:00
Brian May
bd489b3319
Pass socket through to handlers. Required for IPv6 support.
2011-05-31 00:39:17 -04:00
Avery Pennarun
8ab5ef283d
ssnet.py: deal with a possible connect/getsockopt(SO_ERROR) race.
...
Seems to affect Linux servers. Ed Maste says the patch fixes it for him.
2011-05-29 22:42:16 -04:00
Brian May
e67208a294
helpers.py: errno is used by this module, but not imported.
2011-05-15 17:35:53 -04:00
Avery Pennarun
7859be13c2
ui-macos/bits/runpython.do: skip ppc64 architecture.
...
I don't have a Mac that can build it. Hopefully ppc will run fine on ppc64.
2011-05-07 23:19:52 -04:00
Avery Pennarun
f313d50690
ui-macos/bits/runpython.do: report which platforms we're compiling for.
...
Just as a quick reminder, in case you're building a fat binary and you don't
have all the architectures actually installed.
2011-05-07 23:16:42 -04:00
Grissiom
15e26d2e0e
README.md: fix little bug
...
The ssh hostname should immediately follow the -r parameter.
2011-05-07 23:16:42 -04:00
Avery Pennarun
e2ec475de3
ui-macos/models.py: fix a compatibility problem on MacOS for PPC.
...
@objc.accessor isn't the right thing to use for a Core Data Validation
function. Yowee, PyObjc sure is non-obvious.
2011-05-07 23:16:42 -04:00
Avery Pennarun
57e744dadd
./do: use the latest minimal/do from the redo project.
2011-05-03 14:19:45 -07:00
Avery Pennarun
c13be0b817
ui-macos/bits/runpython.do: auto-determine arches to build for.
...
Some people don't have all of them installed, so auto-detect them by
looking at the available arches in /usr/libexec.
2011-05-03 14:18:37 -07:00
Jonathan \"Duke\" Leto
da2c6273f6
Add some friendly info to the README
2011-05-03 14:03:19 -07:00
Avery Pennarun
7712c60c36
Insert two binary NUL bytes (\0) before SSHUTTLE0001 sync string.
...
...and search for those null bytes before looking for the sync string.
This helps when people have misconfigured .bashrc to print messages even in
non-interactive mode. (On my Debian Lenny system, .bashrc doesn't seem to
run when you do 'ssh localhost ls', but on MacOS servers, it does. Hmm...)
2011-05-03 13:59:25 -07:00
Avery Pennarun
65b0390fe9
ssh.py: use 'exec python -c' instead of just 'python -c'.
...
This gets rid of an extra intermediate sh process on the server that we were
keeping for no good reason, since it would exit as soon as python exited
anyway.
2011-05-03 13:51:09 -07:00
Avery Pennarun
c5834a9773
Handle EHOSTDOWN, ENETDOWN.
...
Someone on the mailing list reported getting these.
Also centralize the list of these errors, so we don't have different parts
of the code supporting a different subset of them. Now just use
ssnet.NET_ERRS.
2011-05-03 13:32:25 -07:00
Avery Pennarun
e2474543fc
runpython.do: also compile for ppc architecture.
2011-04-24 22:51:27 -04:00
kaizoku
8636378870
Dereference symlink for sshuttle launch script
...
(Modified slightly by apenwarr)
2011-04-24 22:42:50 -04:00
Avery Pennarun
f5eed4c809
Don't try to connect to remote IPs that start with zero.
...
For some reason, on Linux servers this returns EINVAL. I don't like just
treating EINVAL as non-fatal in general, so let's catch this specific case
and ignore it.
Reported by Reza Mohammadi on the mailing list. Interestingly, it's kind of
hard to trigger this crash since the client would have to request the
connection, and that connection shouldn't exist because the original client
program would have already gotten EINVAL. But my MacOS machine can generate
such a connection, so a MacOS->Linux sshuttle could trigger this.
2011-04-24 22:15:20 -04:00
Avery Pennarun
783d33cada
DNS: auto-retry if we get an error on send/recv to DNS server.
...
A few people have reported that they have one or more invalid DNS servers in
/etc/resolv.conf, which they don't notice because the normal resolver
library just skips the broken ones. sshuttle would abort because it got an
unexpected socket error, which isn't so good.
2011-04-06 12:30:12 -04:00