diff options
author | Colin Watson <cjwatson@debian.org> | 2012-09-07 00:20:47 +0100 |
---|---|---|
committer | Colin Watson <cjwatson@debian.org> | 2012-09-07 00:20:47 +0100 |
commit | eab78da6a54225de06271d9c8da650f04a55ed88 (patch) | |
tree | aa258ca77515939f6d89317ff67fbcb0bca08b24 /ssh.1 | |
parent | a26f5de49df59322fde07f7be91b3e3969c9c238 (diff) | |
parent | c6a2c0334e45419875687d250aed9bea78480f2e (diff) |
* New upstream release (http://www.openssh.com/txt/release-6.1).
- Enable pre-auth sandboxing by default for new installs.
- Allow "PermitOpen none" to refuse all port-forwarding requests
(closes: #543683).
Diffstat (limited to 'ssh.1')
-rw-r--r-- | ssh.1 | 12 |
1 files changed, 6 insertions, 6 deletions
@@ -33,8 +33,8 @@ | |||
33 | .\" (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF | 33 | .\" (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF |
34 | .\" THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. | 34 | .\" THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. |
35 | .\" | 35 | .\" |
36 | .\" $OpenBSD: ssh.1,v 1.323 2011/09/11 06:59:05 okan Exp $ | 36 | .\" $OpenBSD: ssh.1,v 1.326 2012/06/18 12:17:18 dtucker Exp $ |
37 | .Dd $Mdocdate: September 11 2011 $ | 37 | .Dd $Mdocdate: June 18 2012 $ |
38 | .Dt SSH 1 | 38 | .Dt SSH 1 |
39 | .Os | 39 | .Os |
40 | .Sh NAME | 40 | .Sh NAME |
@@ -506,7 +506,7 @@ from the local machine. | |||
506 | Port forwardings can also be specified in the configuration file. | 506 | Port forwardings can also be specified in the configuration file. |
507 | Privileged ports can be forwarded only when | 507 | Privileged ports can be forwarded only when |
508 | logging in as root on the remote machine. | 508 | logging in as root on the remote machine. |
509 | IPv6 addresses can be specified by enclosing the address in square braces. | 509 | IPv6 addresses can be specified by enclosing the address in square brackets. |
510 | .Pp | 510 | .Pp |
511 | By default, the listening socket on the server will be bound to the loopback | 511 | By default, the listening socket on the server will be bound to the loopback |
512 | interface only. | 512 | interface only. |
@@ -587,8 +587,8 @@ Implies | |||
587 | .Fl T , | 587 | .Fl T , |
588 | .Cm ExitOnForwardFailure | 588 | .Cm ExitOnForwardFailure |
589 | and | 589 | and |
590 | .Cm ClearAllForwardings | 590 | .Cm ClearAllForwardings . |
591 | and works with Protocol version 2 only. | 591 | Works with Protocol version 2 only. |
592 | .It Fl w Xo | 592 | .It Fl w Xo |
593 | .Ar local_tun Ns Op : Ns Ar remote_tun | 593 | .Ar local_tun Ns Op : Ns Ar remote_tun |
594 | .Xc | 594 | .Xc |
@@ -1381,7 +1381,7 @@ The file format and configuration options are described in | |||
1381 | .It Pa /etc/ssh/ssh_host_dsa_key | 1381 | .It Pa /etc/ssh/ssh_host_dsa_key |
1382 | .It Pa /etc/ssh/ssh_host_ecdsa_key | 1382 | .It Pa /etc/ssh/ssh_host_ecdsa_key |
1383 | .It Pa /etc/ssh/ssh_host_rsa_key | 1383 | .It Pa /etc/ssh/ssh_host_rsa_key |
1384 | These three files contain the private parts of the host keys | 1384 | These files contain the private parts of the host keys |
1385 | and are used for host-based authentication. | 1385 | and are used for host-based authentication. |
1386 | If protocol version 1 is used, | 1386 | If protocol version 1 is used, |
1387 | .Nm | 1387 | .Nm |