[GH-ISSUE #2750] [suggestion] allow ssh to use netcat to connect to Tor onion services #1730

New issue

Closed

opened 2026-05-05 08:24:06 -06:00 by gitea-mirror · 2 comments

gitea-mirror commented

2026-05-05 08:24:06 -06:00

Owner

Originally created by @caioau on GitHub (Jun 5, 2019).
Original GitHub issue: https://github.com/netblue30/firejail/issues/2750

Hi, I'm very happy with firejail, keep the good work!

I have an idea to improve the ssh profile

I tried to sshing my home box via Tor Onion service (because my ISP is behind a NAT) but the nc (netcat) has not allowed, I'm with firejail version 0.9.61 (compiled myself) on Ubuntu 18.04, I executed ssh home there was an permission denied to run nc, look at my .ssh/config file:

Host home
   HostName realyLongString.onion
   IdentitiesOnly yes
   IdentityFile ~/.ssh/ssh-key.pub
   Compression yes
   ProxyCommand /bin/nc -X 5 -x 127.0.0.1:9150 %h %p

so it will connect to port 9150 (while Tor Browser is running) , I did't the following: added the ignore blacklist ${PATH}/nc to the ssh.local, to override the disable-common.inc. Thanks

Originally created by @caioau on GitHub (Jun 5, 2019). Original GitHub issue: https://github.com/netblue30/firejail/issues/2750 Hi, I'm very happy with firejail, keep the good work! I have an idea to improve the ssh profile I tried to sshing my home box via Tor Onion service (because my ISP is behind a NAT) but the nc (netcat) has not allowed, I'm with firejail version 0.9.61 (compiled myself) on Ubuntu 18.04, I executed `ssh home` there was an permission denied to run nc, look at my `.ssh/config` file: ``` Host home HostName realyLongString.onion IdentitiesOnly yes IdentityFile ~/.ssh/ssh-key.pub Compression yes ProxyCommand /bin/nc -X 5 -x 127.0.0.1:9150 %h %p ``` so it will connect to port 9150 (while Tor Browser is running) , I did't the following: added the `ignore blacklist ${PATH}/nc` to the ssh.local, to override the disable-common.inc. Thanks

gitea-mirror

2026-05-05 08:24:06 -06:00

closed this issue
added the
enhancement
label

gitea-mirror commented

2026-05-05 08:24:09 -06:00

Author

Owner

@rusty-snake commented on GitHub (Jun 5, 2019):

I would prever to only add a comment like:

# If you want to use tor, uncomment the next line or put it in your ssh.local
#noblacklist ${PATH}/nc

@rusty-snake commented on GitHub (Jun 5, 2019): I would prever to only add a comment like: ``` # If you want to use tor, uncomment the next line or put it in your ssh.local #noblacklist ${PATH}/nc ```

gitea-mirror commented

2026-05-05 08:24:09 -06:00

Author

Owner

@rusty-snake commented on GitHub (Jun 6, 2019):

Done: e7ba153

@rusty-snake commented on GitHub (Jun 6, 2019): Done: e7ba153

No milestone

No project

No assignees

1 participant

Notifications

Due date

The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference: github-starred/firejail#1730

No description provided.

Rows
Columns