admin/markbase
1
0
Fork 0
Code Issues Pull Requests Actions 1 Packages Projects Releases Wiki Activity
Files
614275f77ad2f5d97eac7cdfeeee85272d730060
markbase/markbase-core
History
Warren a475de45c9
Some checks failed
Test / test (push) Has been cancelled
Details
Test / build (push) Has been cancelled
Details
Add SSH Port Forwarding ACL (Phase 1-3): prevent SSH tunnel abuse 
Features:
- ForwardRule: Allow/Deny rules with address/port specifications
- ForwardAcl: User-specific ACL with priority-based rule matching
- ForwardAclManager: Global ACL manager for all users
- OpenSSH-style PermitOpen/PermitListen parsing
- 8 unit tests for all operations

Security:
- Prevent unauthorized SSH tunnel creation
- Restrict forwarding to specific hosts/ports
- Default deny policy for unknown users

Files:
- markbase-core/src/ssh_server/forward_acl.rs (493 lines)
- markbase-core/src/ssh_server/mod.rs (+1 line)

Tests: 317 passed (+8)
2026-06-21 12:48:56 +08:00
..
config/ssh_host_keys
Implement SSH Host Key Management (Phase 1): Generate/Load/Rotate Ed25519 keys
2026-06-21 04:57:15 +08:00
src
Add SSH Port Forwarding ACL (Phase 1-3): prevent SSH tunnel abuse
2026-06-21 12:48:56 +08:00
tests
P0: exit-status for subsystem, improved error msgs, integration test suite
2026-06-20 16:40:29 +08:00
Cargo.toml
Add SSH Structured Logging (Phase 1-5): ssh_audit_log.rs module with JSON tracing
2026-06-21 11:29:04 +08:00