[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Bug#929669: ssh: usability issue with -J and multiple jump hosts

Package: openssh-client
Version: 1:7.9p1-10
Severity: normal
File: /usr/bin/ssh

When I try to proxy jump through multiple hosts using the most
intuitive way to do that (multiple -J options), ssh misleads me into
believing that ssh only supports a single jump host but if I use the
right syntax by separating the hosts with commas then it works fine.

I suggest that ssh either automatically combine the values of all the
proxy jump options using commas or print an error directing the user to
manually combine the values of all the proxy jump options using commas.

   $ ssh -J master.debian.org -J paradis.debian.org draghi.debian.org echo yay
   Only a single -J option permitted

   $ ssh -J master.debian.org,paradis.debian.org draghi.debian.org echo yay

-- System Information:
Debian Release: 10.0
  APT prefers testing-debug
  APT policy: (900, 'testing-debug'), (900, 'testing'), (800, 'unstable-debug'), (800, 'unstable'), (790, 'buildd-unstable'), (700, 'experimental-debug'), (700, 'experimental'), (690, 'buildd-experimental')
Architecture: amd64 (x86_64)

Kernel: Linux 4.19.0-5-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_AU.utf8, LC_CTYPE=en_AU.utf8 (charmap=UTF-8), LANGUAGE=en_AU.utf8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled

Versions of packages openssh-client depends on:
ii  adduser           3.118
ii  dpkg              1.19.6
ii  libc6             2.28-10
ii  libedit2          3.1-20181209-1
ii  libgssapi-krb5-2  1.17-2
ii  libselinux1       2.8-1+b1
ii  libssl1.1         1.1.1b-2
ii  passwd            1:4.5-1.1
ii  zlib1g            1:1.2.11.dfsg-1

Versions of packages openssh-client recommends:
ii  xauth  1:1.0.10-1

Versions of packages openssh-client suggests:
pn  keychain                         <none>
pn  libpam-ssh                       <none>
ii  monkeysphere                     0.43-3
ii  ssh-askpass-gnome [ssh-askpass]  1:7.9p1-10

-- no debconf information



Attachment: signature.asc
Description: This is a digitally signed message part

Reply to: