port forwards are always available from outside localhost

[GoogleCodeExporter]

Version: ConnectBot 1.4 (r268 2009.06.02)

syntax: 
myhost.example.org - my server
myphone.example.local - my phone, running connectbot with a connection to 
my server.

example: forwarding myhost.example.org:80 to localhost:8080 (Local port 
8080 to localhost:80) while on a wireless network allows all other users 
on the wireless network to access myhost.example.org:80 on 
myphone.example.local:8080

While this may be usefull in some cases, most of the time it is a security 
risk, for example when forwarding an unprotected vnc connection.

Putty and command line ssh do not allow outside access by default, but 
offer an option to do so if needed. 

Putty offers a checkbox for each forward, labeled "Local forwards accept 
connections from other hosts".
Alternatively the syntax from ssh can be applied to connectbot. From the 
man page:

>The bind_address of “localhost” indicates that the listening port be 
>bound for local use only, while an empty address or ‘*’ indicates that 
>the port should be available from all interfaces.

Original issue reported on code.google.com by P.S.vanderHeide@gmail.com on 15 Jun 2009 at 3:22

[GoogleCodeExporter]

I agree. I changed this in r296

Original comment by kenny@the-b.org on 15 Jun 2009 at 3:53

• Changed state: Done

[GoogleCodeExporter]

Tnx, verified this with r310.

Do you have any intention to make outside access optional?
It may be nice, provided the user knows what he/she is doing.

Original comment by P.S.vanderHeide@gmail.com on 16 Jun 2009 at 12:32