summaryrefslogtreecommitdiff
path: root/readconf.c
diff options
context:
space:
mode:
authorColin Watson <cjwatson@debian.org>2014-02-09 16:10:18 +0000
committerColin Watson <cjwatson@debian.org>2016-02-29 12:35:37 +0000
commit85e40e87a75fb80a0bf893ac05a417d6c353537d (patch)
tree0f76f9976afd1622fe4fd2258fa0136a4ac75312 /readconf.c
parenta7c8a6babe3b4c47fd00bdbefc22fc10d97b9a26 (diff)
Various Debian-specific configuration changes
ssh: Enable ForwardX11Trusted, returning to earlier semantics which cause fewer problems with existing setups (http://bugs.debian.org/237021). ssh: Set 'SendEnv LANG LC_*' by default (http://bugs.debian.org/264024). ssh: Enable HashKnownHosts by default to try to limit the spread of ssh worms. ssh: Enable GSSAPIAuthentication and disable GSSAPIDelegateCredentials by default. Document all of this, along with several sshd defaults set in debian/openssh-server.postinst. Author: Russ Allbery <rra@debian.org> Forwarded: not-needed Last-Update: 2015-12-07 Patch-Name: debian-config.patch
Diffstat (limited to 'readconf.c')
-rw-r--r--readconf.c2
1 files changed, 1 insertions, 1 deletions
diff --git a/readconf.c b/readconf.c
index cc1a6338d..dc22360d1 100644
--- a/readconf.c
+++ b/readconf.c
@@ -1797,7 +1797,7 @@ fill_default_options(Options * options)
1797 if (options->forward_x11 == -1) 1797 if (options->forward_x11 == -1)
1798 options->forward_x11 = 0; 1798 options->forward_x11 = 0;
1799 if (options->forward_x11_trusted == -1) 1799 if (options->forward_x11_trusted == -1)
1800 options->forward_x11_trusted = 0; 1800 options->forward_x11_trusted = 1;
1801 if (options->forward_x11_timeout == -1) 1801 if (options->forward_x11_timeout == -1)
1802 options->forward_x11_timeout = 1200; 1802 options->forward_x11_timeout = 1200;
1803 if (options->exit_on_forward_failure == -1) 1803 if (options->exit_on_forward_failure == -1)