sshd listens on x11 forwarding ports of all interfaces, not just those specifed by ListenAddress. eg: /etc/ssh/sshd_config: ListenAddress 192.168.1.1 X11Forwarding yes # netstat -tlnp Active Internet connections (only servers) Proto Recv-Q Send-Q Local Address Foreign Address State PID/Program name tcp 0 0 0.0.0.0:6010 0.0.0.0:* LISTEN 880/sshd tcp 0 0 192.168.1.1:22 0.0.0.0:* LISTEN 877/sshd
oops, subject of bugreport should have been "sshd ignores ListenAddress for X11Forwarding", not "ListAddress".
Are you sure that ssh really ignores this setting? I see here two
different sshd process. One with pid 877 which is listening on port 22
and host 192.168.1.1 and one with pid 880 that is listening on port 6010
and all interfaces. So, do you have also some configuration that makes
ssh listen on port 6010?
Ciao
Christian
This one has been downgraded to wishlist, since Listen-Address defines
the address and port that ssh is listening on. It does not define any
Address or Port for X11-Forwarding.
Ciao
Christian