summaryrefslogtreecommitdiff
path: root/readconf.c
diff options
context:
space:
mode:
authorColin Watson <cjwatson@debian.org>2014-02-09 16:10:18 +0000
committerColin Watson <cjwatson@debian.org>2015-12-03 17:05:07 +0000
commitc975d37df187e00832d6b6070731b8a8c16a6f56 (patch)
treecfee4f3ba3cfea8531d741a10e07bf6ca88b4ecd /readconf.c
parent92c6b1dc352b03c7bdecc6ce9bfef7a3b2b54bbc (diff)
Various Debian-specific configuration changes
ssh: Enable ForwardX11Trusted, returning to earlier semantics which cause fewer problems with existing setups (http://bugs.debian.org/237021). ssh: Set 'SendEnv LANG LC_*' by default (http://bugs.debian.org/264024). ssh: Enable HashKnownHosts by default to try to limit the spread of ssh worms. ssh: Enable GSSAPIAuthentication and disable GSSAPIDelegateCredentials by default. Document all of this, along with several sshd defaults set in debian/openssh-server.postinst. Author: Russ Allbery <rra@debian.org> Forwarded: not-needed Last-Update: 2015-11-29 Patch-Name: debian-config.patch
Diffstat (limited to 'readconf.c')
-rw-r--r--readconf.c2
1 files changed, 1 insertions, 1 deletions
diff --git a/readconf.c b/readconf.c
index c0ba5a72c..e4e1cbae3 100644
--- a/readconf.c
+++ b/readconf.c
@@ -1749,7 +1749,7 @@ fill_default_options(Options * options)
1749 if (options->forward_x11 == -1) 1749 if (options->forward_x11 == -1)
1750 options->forward_x11 = 0; 1750 options->forward_x11 = 0;
1751 if (options->forward_x11_trusted == -1) 1751 if (options->forward_x11_trusted == -1)
1752 options->forward_x11_trusted = 0; 1752 options->forward_x11_trusted = 1;
1753 if (options->forward_x11_timeout == -1) 1753 if (options->forward_x11_timeout == -1)
1754 options->forward_x11_timeout = 1200; 1754 options->forward_x11_timeout = 1200;
1755 if (options->exit_on_forward_failure == -1) 1755 if (options->exit_on_forward_failure == -1)