From 44c6fba349aebd9e3e9265a373a81d5d4b83d25c Mon Sep 17 00:00:00 2001
From: Michel Oosterhof <michel@oosterhof.net>
Date: Wed, 20 Aug 2014 15:24:43 +0200
Subject: [PATCH] add logging for direct-tcpip connections

---
 kippo/core/ssh.py | 10 +++++++++-
 1 file changed, 9 insertions(+), 1 deletion(-)

diff --git a/kippo/core/ssh.py b/kippo/core/ssh.py
index e667866b..1eab2573 100644
--- a/kippo/core/ssh.py
+++ b/kippo/core/ssh.py
@@ -4,7 +4,7 @@
 import twisted
 from twisted.cred import portal
 from twisted.conch import avatar, interfaces as conchinterfaces
-from twisted.conch.ssh import factory, userauth, connection, keys, session, transport
+from twisted.conch.ssh import factory, userauth, connection, keys, session, transport, forwarding
 from twisted.python import log
 from zope.interface import implements
 
@@ -203,14 +203,17 @@ class HoneyPotSSHSession(session.SSHSession):
     def request_env(self, data):
         print 'request_env: %s' % (repr(data))
 
+
 class HoneyPotAvatar(avatar.ConchUser):
     implements(conchinterfaces.ISession)
 
+
     def __init__(self, username, env):
         avatar.ConchUser.__init__(self)
         self.username = username
         self.env = env
         self.channelLookup.update({'session': HoneyPotSSHSession})
+        self.channelLookup['direct-tcpip'] = KippoOpenConnectForwardingClient
 
         userdb = core.auth.UserDB()
         self.uid = self.gid = userdb.getUID(self.username)
@@ -304,4 +307,9 @@ def getDSAKeys():
             privateKeyString = f.read()
     return publicKeyString, privateKeyString
 
+def KippoOpenConnectForwardingClient(remoteWindow, remoteMaxPacket, data, avatar):
+    remoteHP, origHP = twisted.conch.ssh.forwarding.unpackOpen_direct_tcpip(data)
+    log.msg( "connection attempt to %s:%i" % remoteHP )
+    return None
+
 # vim: set et sw=4 et: