did you know that SSH has a little-known secret menu?

@baloo @mica @rebane2001 it’s a good security default. Imagine a bastion host or other program that allows you to ssh to a target host. The expectation is that all you can do is interact with the terminal on the target, or exit. However, the ssh escape allows you to create and delete tunnels, amongst other things, which might not have been anticipated. Disabling by default removes the surprise.

@SteveBellovin @usenixassociation maybe they’re interviewing for a new head of CISA?