diff options
| author | djm@openbsd.org <djm@openbsd.org> | 2018-06-06 18:24:15 +0000 |
|---|---|---|
| committer | Damien Miller <djm@mindrot.org> | 2018-06-07 04:27:21 +1000 |
| commit | 803d896ef30758135e2f438bdd1a0be27989e018 (patch) | |
| tree | e21ea24f8f3cd8b2bc69cd0274b4820ff7714ef8 /sshd.8 | |
| parent | 04df43208b5b460d7360e1598f876b92a32f5922 (diff) | |
upstream: man bits for permitlisten authorized_keys option
OpenBSD-Commit-ID: 86910af8f781a4ac5980fea125442eb25466dd78
Diffstat (limited to 'sshd.8')
| -rw-r--r-- | sshd.8 | 23 |
1 files changed, 20 insertions, 3 deletions
| @@ -33,8 +33,8 @@ | |||
| 33 | .\" (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF | 33 | .\" (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF |
| 34 | .\" THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. | 34 | .\" THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. |
| 35 | .\" | 35 | .\" |
| 36 | .\" $OpenBSD: sshd.8,v 1.299 2018/03/14 06:56:20 jmc Exp $ | 36 | .\" $OpenBSD: sshd.8,v 1.300 2018/06/06 18:24:15 djm Exp $ |
| 37 | .Dd $Mdocdate: March 14 2018 $ | 37 | .Dd $Mdocdate: June 6 2018 $ |
| 38 | .Dt SSHD 8 | 38 | .Dt SSHD 8 |
| 39 | .Os | 39 | .Os |
| 40 | .Sh NAME | 40 | .Sh NAME |
| @@ -554,11 +554,28 @@ Disables execution of | |||
| 554 | .It Cm no-X11-forwarding | 554 | .It Cm no-X11-forwarding |
| 555 | Forbids X11 forwarding when this key is used for authentication. | 555 | Forbids X11 forwarding when this key is used for authentication. |
| 556 | Any X11 forward requests by the client will return an error. | 556 | Any X11 forward requests by the client will return an error. |
| 557 | .It Cm permitlisten="host:port" | ||
| 558 | Limit remote port forwarding with | ||
| 559 | .Xr ssh 1 | ||
| 560 | .Fl R | ||
| 561 | option such that it may only listen on the specified host and port. | ||
| 562 | IPv6 addresses can be specified by enclosing the address in square brackets. | ||
| 563 | Multiple | ||
| 564 | .Cm permitlisten | ||
| 565 | options may be applied separated by commas. | ||
| 566 | Hostnames may include wildcards as described in the PATTERNS section in | ||
| 567 | .Xr ssh_config 5 . | ||
| 568 | A port specification of | ||
| 569 | .Cm * | ||
| 570 | matches any port. | ||
| 571 | Note that the setting of | ||
| 572 | .Cm GatewayPorts | ||
| 573 | may further restrict listen addresses. | ||
| 557 | .It Cm permitopen="host:port" | 574 | .It Cm permitopen="host:port" |
| 558 | Limit local port forwarding with | 575 | Limit local port forwarding with |
| 559 | .Xr ssh 1 | 576 | .Xr ssh 1 |
| 560 | .Fl L | 577 | .Fl L |
| 561 | such that it may only connect to the specified host and port. | 578 | option such that it may only connect to the specified host and port. |
| 562 | IPv6 addresses can be specified by enclosing the address in square brackets. | 579 | IPv6 addresses can be specified by enclosing the address in square brackets. |
| 563 | Multiple | 580 | Multiple |
| 564 | .Cm permitopen | 581 | .Cm permitopen |