a3cbf0885f
Merge pull request #646 from skuhl/nat-ipv6
...
Add IPv6 support to nat (iptables) method.
2021-06-01 07:40:08 +10:00
3f201095ea
Merge branch 'master' into nat-ipv6
2021-05-30 21:09:32 -04:00
58c264ff1c
Merge pull request #648 from skuhl/sudoers-add-sanitize
...
Fix #637 : sudoers-add should always write to /etc/sudoers.d/...
2021-05-31 07:53:19 +10:00
1820264dd5
Merge pull request #647 from skuhl/man-page-updates
...
Update documentation
2021-05-31 07:48:56 +10:00
be847f5d81
Merge pull request #645 from skuhl/hostwatch-remove-dead-code
...
Remove dead code in hostwatch.py
2021-05-31 07:44:21 +10:00
d2836a082f
Merge pull request #644 from skuhl/fix-tmark
...
Fix --tmark option
2021-05-31 07:42:30 +10:00
8c5ffc9e72
Fix #637 : File written by sudoers-add should always begin with /etc/sudoers.d/
...
The problem and patch was originally submitted aayla-secura. I made a
minor improvement to the error message.
2021-05-30 17:03:03 -04:00
843a729d64
flake8: fix long line
2021-05-29 21:58:56 -04:00
851b26cb13
Update documentation
...
The output in the examples provided in the man page hadn't been
updated as sshuttle changed its output over time.
The example of testing sshuttle without a remote host was removed. It
was the first example previously and it is something that is unlikely
users will wish to do.
Also:
- Update some --help messages.
- Manpage: Fix a typo.
- Manpage: Mention that host specified with -r can be an ssh alias.
- Eliminate variable only used once.
2021-05-29 21:54:47 -04:00
c026a92cad
Add IPv6 support to nat (iptables) method.
...
Adding IPv6 support to the nat method is straightforward after the
previous work to add IPv6 support for nft.
2021-05-29 20:55:48 -04:00
1dbec7252d
Remove dead code in hostwatch.py
...
11 years ago in commit 384d0e7c1d
2021-05-29 20:48:33 -04:00
a7df12cd68
Fix --tmark option
...
Even when --tmark was used, the iptables code always used '1' for the
mark. This patch corrects the problem.
Previously, it wasn't clear if the tmark should be supplied in
hexadecimal or as an integer. This makes it use hexadecimal, checks
that the input is hexadecimal, and updates the associated
documentation.
This patch also makes --ttl information get passed to the firewall in
a way that matches how other information gets passed. The ttl and
tmark information are passed next to each other in many places and
this patch also makes the order consistent.
2021-05-27 21:48:43 -04:00
bc54ffe398
Merge pull request #643 from skuhl/fix-to-ns-with-ns-hosts
...
Fix: Allow --to-ns and --ns-host without --dns.
2021-05-22 13:06:48 +10:00
31f059883c
Fix: Allow --to-ns and --ns-host without --dns.
...
If the user specifies --to-ns (tells the remote server which DNS
server to use for lookups coming from sshuttle), then either --ns-host
or --dns need to also be used (route DNS requests through sshuttle).
A previous commit incorrectly made it so --to-ns and --ns-host
couldn't be successfully used together.
Attempts to fix #641 .
2021-05-21 17:47:38 -04:00
f376674941
Merge pull request #634 from skuhl/systemd-dns-flush
...
Flush systemd DNS cache on startup and exit.
2021-05-18 15:40:56 +10:00
41ca86dbf2
Merge pull request #640 from sshuttle/dependabot/pip/pytest-cov-2.12.0
...
Bump pytest-cov from 2.11.1 to 2.12.0
2021-05-18 08:17:26 +10:00
7760d63870
Bump pytest-cov from 2.11.1 to 2.12.0
...
Bumps [pytest-cov](https://github.com/pytest-dev/pytest-cov ) from 2.11.1 to 2.12.0.
- [Release notes](https://github.com/pytest-dev/pytest-cov/releases )
- [Changelog](https://github.com/pytest-dev/pytest-cov/blob/master/CHANGELOG.rst )
- [Commits](https://github.com/pytest-dev/pytest-cov/compare/v2.11.1...v2.12.0 )
Signed-off-by: dependabot[bot] <support@github.com >
2021-05-17 07:36:53 +00:00
8b69c706c2
Merge pull request #639 from sshuttle/dependabot/github_actions/actions/setup-python-2.2.2
...
Bump actions/setup-python from 2 to 2.2.2
2021-05-12 20:36:42 +10:00
d289fb2e73
Merge pull request #638 from sshuttle/dependabot/github_actions/actions/checkout-2.3.4
...
Bump actions/checkout from 2 to 2.3.4
2021-05-12 20:36:28 +10:00
20c38afaba
Bump actions/setup-python from 2 to 2.2.2
...
Bumps [actions/setup-python](https://github.com/actions/setup-python ) from 2 to 2.2.2.
- [Release notes](https://github.com/actions/setup-python/releases )
- [Commits](https://github.com/actions/setup-python/compare/v2...v2.2.2 )
Signed-off-by: dependabot[bot] <support@github.com >
2021-05-12 06:13:47 +00:00
7aeb7929c5
Bump actions/checkout from 2 to 2.3.4
...
Bumps [actions/checkout](https://github.com/actions/checkout ) from 2 to 2.3.4.
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](https://github.com/actions/checkout/compare/v2...v2.3.4 )
Signed-off-by: dependabot[bot] <support@github.com >
2021-05-12 06:13:43 +00:00
30767135fb
Merge pull request #636 from sshuttle/dependabot/pip/flake8-3.9.2
...
Bump flake8 from 3.9.1 to 3.9.2
2021-05-10 20:53:51 +10:00
df383edaf6
Bump flake8 from 3.9.1 to 3.9.2
...
Bumps [flake8](https://gitlab.com/pycqa/flake8 ) from 3.9.1 to 3.9.2.
- [Release notes](https://gitlab.com/pycqa/flake8/tags )
- [Commits](https://gitlab.com/pycqa/flake8/compare/3.9.1...3.9.2 )
Signed-off-by: dependabot[bot] <support@github.com >
2021-05-10 10:00:12 +00:00
88154f4f9c
Merge pull request #635 from skuhl/sudoers-warning
...
Warn about adding sshuttle to sudoers.
2021-05-09 20:25:26 +10:00
915497f73f
Warn about adding sshuttle to sudoers.
...
Issue #631 suggests that we should warn about users who add sshuttle
to sudoers because it isn't obvious that when a user can run sshuttle
as root, they can run any command as root using sshuttle's -e or
--ssh-cmd parameters.
This patch adds a comment that warns about this problem to the sudoers
file. It also prints the warning to the console if the user uses an
option that writes the data directly to the file. This patch also
causes the output of the sudoers-add command to be printed to the
console so that the user can see the name of the file that was
created.
There is room for improvement: Warnings could be added to the
documentation and/or these parameters could be removed entirely.
2021-05-07 14:13:56 -04:00
652113818e
Merge pull request #633 from sshuttle/dependabot/pip/pytest-6.2.4
...
Bump pytest from 6.2.3 to 6.2.4
2021-05-06 08:08:28 +10:00
cdfb4b7d71
Flush systemd DNS cache on startup and exit.
...
It is possible for DNS requests to go through systemd's DNS resolution
system (which includes a cache) before sshuttle has an opportunity to
intercept the requests. The DNS entries in the cache may become
outdated when sshuttle starts or exits. This patch fixes the problem
by flushing the cache when sshuttle firewall starts and exits.
2021-05-05 12:24:58 -04:00
45b788c908
Bump pytest from 6.2.3 to 6.2.4
...
Bumps [pytest](https://github.com/pytest-dev/pytest ) from 6.2.3 to 6.2.4.
- [Release notes](https://github.com/pytest-dev/pytest/releases )
- [Changelog](https://github.com/pytest-dev/pytest/blob/main/CHANGELOG.rst )
- [Commits](https://github.com/pytest-dev/pytest/compare/6.2.3...6.2.4 )
Signed-off-by: dependabot[bot] <support@github.com >
2021-05-05 07:58:09 +00:00
f6176d3581
Merge pull request #630 from thesamesam/patch-1
...
README.rst: fix Gentoo entry syntax
2021-04-27 07:47:46 +10:00
bc08198cae
README.rst: fix Gentoo entry syntax
2021-04-26 16:22:42 +01:00
613412b3cd
Merge pull request #627 from sshuttle/dependabot/pip/flake8-3.9.1
...
Bump flake8 from 3.9.0 to 3.9.1
2021-04-18 10:26:40 +10:00
4f7706db59
Bump flake8 from 3.9.0 to 3.9.1
...
Bumps [flake8](https://gitlab.com/pycqa/flake8 ) from 3.9.0 to 3.9.1.
- [Release notes](https://gitlab.com/pycqa/flake8/tags )
- [Commits](https://gitlab.com/pycqa/flake8/compare/3.9.0...3.9.1 )
Signed-off-by: dependabot[bot] <support@github.com >
2021-04-16 08:00:29 +00:00
7307636d35
Merge pull request #624 from sshuttle/dependabot/add-v2-config-file
...
Create Dependabot config file
2021-04-08 11:47:33 +10:00
1f5161e48c
Create Dependabot config file
2021-04-08 01:40:51 +00:00
d505b08104
Merge pull request #623 from sshuttle/dependabot/pip/pytest-6.2.3
...
Bump pytest from 6.2.2 to 6.2.3
2021-04-06 08:37:03 +10:00
3e3608f572
Bump pytest from 6.2.2 to 6.2.3
...
Bumps [pytest](https://github.com/pytest-dev/pytest ) from 6.2.2 to 6.2.3.
- [Release notes](https://github.com/pytest-dev/pytest/releases )
- [Changelog](https://github.com/pytest-dev/pytest/blob/main/CHANGELOG.rst )
- [Commits](https://github.com/pytest-dev/pytest/compare/6.2.2...6.2.3 )
Signed-off-by: dependabot-preview[bot] <support@dependabot.com >
2021-04-05 06:17:47 +00:00
51a1078371
Merge pull request #622 from necrose99/patch-1
...
Update README.rst
2021-03-26 07:52:21 +11:00
f55983e485
Merge pull request #620 from sshuttle/dependabot/pip/pyflakes-2.3.1
...
Bump pyflakes from 2.3.0 to 2.3.1
2021-03-26 07:51:48 +11:00
e54747bfb0
Update README.rst
...
https://packages.gentoo.org/packages/net-proxy/sshuttle
2021-03-25 14:12:32 -05:00
d8acf15c1e
Bump pyflakes from 2.3.0 to 2.3.1
...
Bumps [pyflakes](https://github.com/PyCQA/pyflakes ) from 2.3.0 to 2.3.1.
- [Release notes](https://github.com/PyCQA/pyflakes/releases )
- [Changelog](https://github.com/PyCQA/pyflakes/blob/master/NEWS.rst )
- [Commits](https://github.com/PyCQA/pyflakes/compare/2.3.0...2.3.1 )
Signed-off-by: dependabot-preview[bot] <support@dependabot.com >
2021-03-25 06:12:41 +00:00
bafc0a7038
Merge pull request #618 from patrislav1/bugfix-dnsproxy
...
Fix DnsProxy
2021-03-21 09:21:26 +11:00
4c11dd7183
options: make sure ttl is of integer type
2021-03-20 12:26:17 +01:00
4257c8d34e
Merge pull request #617 from patrislav1/bugfix-iptables-wait
...
Fix firewall setup/teardown failure on xtable lock
2021-03-20 11:27:20 +11:00
dc657a93f4
Merge pull request #616 from sshuttle/dependabot/pip/setuptools-scm-6.0.1
...
Bump setuptools-scm from 5.0.2 to 6.0.1
2021-03-19 09:01:02 +11:00
5e177d81bc
Fix firewall setup/teardown failure on xtable lock
2021-03-18 09:41:21 +01:00
7015d7a823
Bump setuptools-scm from 5.0.2 to 6.0.1
...
Bumps [setuptools-scm](https://github.com/pypa/setuptools_scm ) from 5.0.2 to 6.0.1.
- [Release notes](https://github.com/pypa/setuptools_scm/releases )
- [Changelog](https://github.com/pypa/setuptools_scm/blob/main/CHANGELOG.rst )
- [Commits](https://github.com/pypa/setuptools_scm/compare/v5.0.2...v6.0.1 )
Signed-off-by: dependabot-preview[bot] <support@dependabot.com >
2021-03-18 06:10:30 +00:00
014a268b99
Merge pull request #614 from sshuttle/upgrade_lint
...
Bump pyflakes from 2.2.0 to 2.3.0, flake8 from 3.8.4 to 3.9.0
2021-03-16 08:30:15 +11:00
97076a9390
Adjust branches, remove temporary branches
2021-03-16 08:29:14 +11:00
dd661e9728
Bump pyflakes from 2.2.0 to 2.3.0, flake8 from 3.8.4 to 3.9.0
...
Bumps [pyflakes](https://github.com/PyCQA/pyflakes ) from 2.2.0 to 2.3.0.
- [Release notes](https://github.com/PyCQA/pyflakes/releases )
- [Changelog](https://github.com/PyCQA/pyflakes/blob/master/NEWS.rst )
- [Commits](https://github.com/PyCQA/pyflakes/compare/2.2.0...2.3.0 )
Bumps [flake8](https://gitlab.com/pycqa/flake8 ) from 3.8.4 to 3.9.0.
- [Release notes](https://gitlab.com/pycqa/flake8/tags )
- [Commits](https://gitlab.com/pycqa/flake8/compare/3.8.4...3.9.0 )
2021-03-16 08:21:03 +11:00
d6d11b24c8
Make exit code indicate a problem when pidfile is not writable.
...
Here, we try to open the pidfile for writing prior to forking so that
the exit code can properly indicate to the user that there was a
problem. No error messages are printed to the console in this case
because when --daemon implies --syslog. So, the syslog will contain
the message indicating that the pidfile wasn't writeable.
Fixes bug #598 .
2021-03-10 07:54:55 +11:00
