diff options
| author | Damien Miller <djm@mindrot.org> | 2008-05-19 14:59:02 +1000 |
|---|---|---|
| committer | Damien Miller <djm@mindrot.org> | 2008-05-19 14:59:02 +1000 |
| commit | e9890193032b4bba7afa40d4fc003bbf629afba2 (patch) | |
| tree | b478d9fa214aaa6c457aade5442b1492b6bc4d34 | |
| parent | ba3a6599a2c1f2547747653608c6235bb8f252e4 (diff) | |
- jmc@cvs.openbsd.org 2008/05/07 08:00:14
[sshd_config.5]
sort;
| -rw-r--r-- | ChangeLog | 5 | ||||
| -rw-r--r-- | sshd_config.5 | 22 |
2 files changed, 15 insertions, 12 deletions
| @@ -55,6 +55,9 @@ | |||
| 55 | - pyr@cvs.openbsd.org 2008/05/07 06:43:35 | 55 | - pyr@cvs.openbsd.org 2008/05/07 06:43:35 |
| 56 | [sshd_config] | 56 | [sshd_config] |
| 57 | push the sshd_config bits in, spotted by ajacoutot@ | 57 | push the sshd_config bits in, spotted by ajacoutot@ |
| 58 | - jmc@cvs.openbsd.org 2008/05/07 08:00:14 | ||
| 59 | [sshd_config.5] | ||
| 60 | sort; | ||
| 58 | 61 | ||
| 59 | 20080403 | 62 | 20080403 |
| 60 | - (djm) [openbsd-compat/bsd-poll.c] Include stdlib.h to avoid compile- | 63 | - (djm) [openbsd-compat/bsd-poll.c] Include stdlib.h to avoid compile- |
| @@ -3915,4 +3918,4 @@ | |||
| 3915 | OpenServer 6 and add osr5bigcrypt support so when someone migrates | 3918 | OpenServer 6 and add osr5bigcrypt support so when someone migrates |
| 3916 | passwords between UnixWare and OpenServer they will still work. OK dtucker@ | 3919 | passwords between UnixWare and OpenServer they will still work. OK dtucker@ |
| 3917 | 3920 | ||
| 3918 | $Id: ChangeLog,v 1.4917 2008/05/19 04:58:22 djm Exp $ | 3921 | $Id: ChangeLog,v 1.4918 2008/05/19 04:59:02 djm Exp $ |
diff --git a/sshd_config.5 b/sshd_config.5 index b93c801e3..99b5621e7 100644 --- a/sshd_config.5 +++ b/sshd_config.5 | |||
| @@ -34,8 +34,8 @@ | |||
| 34 | .\" (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF | 34 | .\" (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF |
| 35 | .\" THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. | 35 | .\" THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. |
| 36 | .\" | 36 | .\" |
| 37 | .\" $OpenBSD: sshd_config.5,v 1.88 2008/05/07 05:49:37 pyr Exp $ | 37 | .\" $OpenBSD: sshd_config.5,v 1.89 2008/05/07 08:00:14 jmc Exp $ |
| 38 | .Dd $Mdocdate: May 7 2008 $ | 38 | .Dd $Mdocdate: May 19 2008 $ |
| 39 | .Dt SSHD_CONFIG 5 | 39 | .Dt SSHD_CONFIG 5 |
| 40 | .Os | 40 | .Os |
| 41 | .Sh NAME | 41 | .Sh NAME |
| @@ -95,6 +95,15 @@ Valid arguments are | |||
| 95 | (use IPv6 only). | 95 | (use IPv6 only). |
| 96 | The default is | 96 | The default is |
| 97 | .Dq any . | 97 | .Dq any . |
| 98 | .It Cm AllowAgentForwarding | ||
| 99 | Specifies whether | ||
| 100 | .Xr ssh-agent 1 | ||
| 101 | forwarding is permitted. | ||
| 102 | The default is | ||
| 103 | .Dq yes . | ||
| 104 | Note that disabling agent forwarding does not improve security | ||
| 105 | unless users are also denied shell access, as they can always install | ||
| 106 | their own forwarders. | ||
| 98 | .It Cm AllowGroups | 107 | .It Cm AllowGroups |
| 99 | This keyword can be followed by a list of group name patterns, separated | 108 | This keyword can be followed by a list of group name patterns, separated |
| 100 | by spaces. | 109 | by spaces. |
| @@ -114,15 +123,6 @@ See | |||
| 114 | in | 123 | in |
| 115 | .Xr ssh_config 5 | 124 | .Xr ssh_config 5 |
| 116 | for more information on patterns. | 125 | for more information on patterns. |
| 117 | .It Cm AllowAgentForwarding | ||
| 118 | Specifies whether | ||
| 119 | .Xr ssh-agent 1 | ||
| 120 | forwarding is permitted. | ||
| 121 | The default is | ||
| 122 | .Dq yes . | ||
| 123 | Note that disabling Agent forwarding does not improve security | ||
| 124 | unless users are also denied shell access, as they can always install | ||
| 125 | their own forwarders. | ||
| 126 | .It Cm AllowTcpForwarding | 126 | .It Cm AllowTcpForwarding |
| 127 | Specifies whether TCP forwarding is permitted. | 127 | Specifies whether TCP forwarding is permitted. |
| 128 | The default is | 128 | The default is |