Import openssh_7.6p1.orig.tar.gz

author: Colin Watson <cjwatson@debian.org> 2017-10-04 11:23:58 +0100
committer: Colin Watson <cjwatson@debian.org> 2017-10-04 11:23:58 +0100
commit: 62f54f20bf351468e0124f63cc2902ee40d9b0e9 (patch)
tree: 3e090f2711b94ca5029d3fa3e8047b1ed1448b1f /sshd.8
parent: 6fabaf6fd9b07cc8bc6a17c9c4a5b76849cfc874 (diff)
parent: 66bf74a92131b7effe49fb0eefe5225151869dc5 (diff)
1 files changed, 20 insertions, 6 deletions
diff --git a/sshd.8 b/sshd.8
index 7725a692c..a4201146b 100644
--- a/sshd.8
+++ b/sshd.8
@@ -33,8 +33,8 @@
 .\" (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF
 .\" THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
 .\"
-.\" $OpenBSD: sshd.8,v 1.288 2017/01/30 23:27:39 dtucker Exp $
+.\" $OpenBSD: sshd.8,v 1.291 2017/06/24 06:28:50 jmc Exp $
-.Dd $Mdocdate: January 30 2017 $
+.Dd $Mdocdate: June 24 2017 $
 .Dt SSHD 8
 .Os
 .Sh NAME
@@ -260,7 +260,7 @@ The client selects the encryption algorithm
 to use from those offered by the server.
 Additionally, session integrity is provided
 through a cryptographic message authentication code
-(hmac-md5, hmac-sha1, umac-64, umac-128, hmac-ripemd160,
+(hmac-md5, hmac-sha1, umac-64, umac-128,
 hmac-sha2-256 or hmac-sha2-512).
 .Pp
 Finally, the server and the client enter an authentication dialog.
@@ -652,9 +652,23 @@ Hostnames is a comma-separated list of patterns
 and
 .Ql \&?
 act as
-wildcards); each pattern in turn is matched against the canonical host
+wildcards); each pattern in turn is matched against the host name.
-name (when authenticating a client) or against the user-supplied
+When
-name (when authenticating a server).
+.Nm sshd
+is authenticating a client, such as when using
+.Cm HostbasedAuthentication ,
+this will be the canonical client host name.
+When
+.Xr ssh 1
+is authenticating a server, this will be the host name
+given by the user, the value of the
+.Xr ssh 1
+.Cm HostkeyAlias
+if it was specified, or the canonical server hostname if the
+.Xr ssh 1
+.Cm CanonicalizeHostname
+option was used.
+.Pp
 A pattern may also be preceded by
 .Ql \&!
 to indicate negation: if the host name matches a negated
author	Colin Watson <cjwatson@debian.org>	2017-10-04 11:23:58 +0100
committer	Colin Watson <cjwatson@debian.org>	2017-10-04 11:23:58 +0100
commit	62f54f20bf351468e0124f63cc2902ee40d9b0e9 (patch)
tree	3e090f2711b94ca5029d3fa3e8047b1ed1448b1f /sshd.8
parent	6fabaf6fd9b07cc8bc6a17c9c4a5b76849cfc874 (diff)
parent	66bf74a92131b7effe49fb0eefe5225151869dc5 (diff)

diff --git a/sshd.8 b/sshd.8 index 7725a692c..a4201146b 100644 --- a/sshd.8 +++ b/sshd.8
@@ -33,8 +33,8 @@
33	.\" (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF	33	.\" (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF
34	.\" THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.	34	.\" THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
35	.\"	35	.\"
36	.\" $OpenBSD: sshd.8,v 1.288 2017/01/30 23:27:39 dtucker Exp $	36	.\" $OpenBSD: sshd.8,v 1.291 2017/06/24 06:28:50 jmc Exp $
37	.Dd $Mdocdate: January 30 2017 $	37	.Dd $Mdocdate: June 24 2017 $
38	.Dt SSHD 8	38	.Dt SSHD 8
39	.Os	39	.Os
40	.Sh NAME	40	.Sh NAME
@@ -260,7 +260,7 @@ The client selects the encryption algorithm
260	to use from those offered by the server.	260	to use from those offered by the server.
261	Additionally, session integrity is provided	261	Additionally, session integrity is provided
262	through a cryptographic message authentication code	262	through a cryptographic message authentication code
263	(hmac-md5, hmac-sha1, umac-64, umac-128, hmac-ripemd160,	263	(hmac-md5, hmac-sha1, umac-64, umac-128,
264	hmac-sha2-256 or hmac-sha2-512).	264	hmac-sha2-256 or hmac-sha2-512).
265	.Pp	265	.Pp
266	Finally, the server and the client enter an authentication dialog.	266	Finally, the server and the client enter an authentication dialog.
@@ -652,9 +652,23 @@ Hostnames is a comma-separated list of patterns
652	and	652	and
653	.Ql \&?	653	.Ql \&?
654	act as	654	act as
655	wildcards); each pattern in turn is matched against the canonical host	655	wildcards); each pattern in turn is matched against the host name.
656	name (when authenticating a client) or against the user-supplied	656	When
657	name (when authenticating a server).	657	.Nm sshd
		658	is authenticating a client, such as when using
		659	.Cm HostbasedAuthentication ,
		660	this will be the canonical client host name.
		661	When
		662	.Xr ssh 1
		663	is authenticating a server, this will be the host name
		664	given by the user, the value of the
		665	.Xr ssh 1
		666	.Cm HostkeyAlias
		667	if it was specified, or the canonical server hostname if the
		668	.Xr ssh 1
		669	.Cm CanonicalizeHostname
		670	option was used.
		671	.Pp
658	A pattern may also be preceded by	672	A pattern may also be preceded by
659	.Ql \&!	673	.Ql \&!
660	to indicate negation: if the host name matches a negated	674	to indicate negation: if the host name matches a negated