diff options
| author | Colin Watson <cjwatson@debian.org> | 2014-02-09 16:10:18 +0000 |
|---|---|---|
| committer | Colin Watson <cjwatson@debian.org> | 2015-11-24 20:45:17 +0000 |
| commit | 0cce5c4c1de33c4172ce8ebc0f93e717995779f8 (patch) | |
| tree | 32e2bdbea913f7377cf9960bc7433700c7c309e4 /readconf.c | |
| parent | 18a9869659a7e7f3bde44fa2d26599844baece2c (diff) | |
Various Debian-specific configuration changes
ssh: Enable ForwardX11Trusted, returning to earlier semantics which cause
fewer problems with existing setups (http://bugs.debian.org/237021).
ssh: Set 'SendEnv LANG LC_*' by default (http://bugs.debian.org/264024).
ssh: Enable HashKnownHosts by default to try to limit the spread of ssh
worms.
ssh: Enable GSSAPIAuthentication and disable GSSAPIDelegateCredentials by
default.
sshd: Refer to /usr/share/doc/openssh-server/README.Debian.gz alongside
PermitRootLogin default.
Document all of this, along with several sshd defaults set in
debian/openssh-server.postinst.
Author: Russ Allbery <rra@debian.org>
Forwarded: not-needed
Last-Update: 2015-08-19
Patch-Name: debian-config.patch
Diffstat (limited to 'readconf.c')
| -rw-r--r-- | readconf.c | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/readconf.c b/readconf.c index 5f6c37fe4..f0769b574 100644 --- a/readconf.c +++ b/readconf.c | |||
| @@ -1748,7 +1748,7 @@ fill_default_options(Options * options) | |||
| 1748 | if (options->forward_x11 == -1) | 1748 | if (options->forward_x11 == -1) |
| 1749 | options->forward_x11 = 0; | 1749 | options->forward_x11 = 0; |
| 1750 | if (options->forward_x11_trusted == -1) | 1750 | if (options->forward_x11_trusted == -1) |
| 1751 | options->forward_x11_trusted = 0; | 1751 | options->forward_x11_trusted = 1; |
| 1752 | if (options->forward_x11_timeout == -1) | 1752 | if (options->forward_x11_timeout == -1) |
| 1753 | options->forward_x11_timeout = 1200; | 1753 | options->forward_x11_timeout = 1200; |
| 1754 | if (options->exit_on_forward_failure == -1) | 1754 | if (options->exit_on_forward_failure == -1) |