summaryrefslogtreecommitdiff
path: root/sshd_config.0
diff options
context:
space:
mode:
authorColin Watson <cjwatson@debian.org>2005-05-25 11:01:01 +0000
committerColin Watson <cjwatson@debian.org>2005-05-25 11:01:01 +0000
commite88de75a1a236779a10e8ccbcc51d25308be8840 (patch)
tree7495477a2a7d0cac17a9fcded020b6ea816182ef /sshd_config.0
parent30a0f9443782cd9d7308acd09430bf586186aa55 (diff)
parent5d05471f6657646d1d6500c7c43134462c407ee6 (diff)
Merge 4.0p1 to the trunk.
Diffstat (limited to 'sshd_config.0')
-rw-r--r--sshd_config.033
1 files changed, 20 insertions, 13 deletions
diff --git a/sshd_config.0 b/sshd_config.0
index 0528a8c44..1f8763faf 100644
--- a/sshd_config.0
+++ b/sshd_config.0
@@ -28,6 +28,11 @@ DESCRIPTION
28 taken in the use of this directive. The default is not to accept 28 taken in the use of this directive. The default is not to accept
29 any environment variables. 29 any environment variables.
30 30
31 AddressFamily
32 Specifies which address family should be used by sshd. Valid ar-
33 guments are ``any'', ``inet'' (use IPv4 only) or ``inet6'' (use
34 IPv6 only). The default is ``any''.
35
31 AllowGroups 36 AllowGroups
32 This keyword can be followed by a list of group name patterns, 37 This keyword can be followed by a list of group name patterns,
33 separated by spaces. If specified, login is allowed only for 38 separated by spaces. If specified, login is allowed only for
@@ -135,10 +140,13 @@ DESCRIPTION
135 forwarded for the client. By default, sshd binds remote port 140 forwarded for the client. By default, sshd binds remote port
136 forwardings to the loopback address. This prevents other remote 141 forwardings to the loopback address. This prevents other remote
137 hosts from connecting to forwarded ports. GatewayPorts can be 142 hosts from connecting to forwarded ports. GatewayPorts can be
138 used to specify that sshd should bind remote port forwardings to 143 used to specify that sshd should allow remote port forwardings to
139 the wildcard address, thus allowing remote hosts to connect to 144 bind to non-loopback addresses, thus allowing other hosts to con-
140 forwarded ports. The argument must be ``yes'' or ``no''. The 145 nect. The argument may be ``no'' to force remote port forward-
141 default is ``no''. 146 ings to be available to the local host only, ``yes'' to force re-
147 mote port forwardings to bind to the wildcard address, or
148 ``clientspecified'' to allow the client to select the address to
149 which the forwarding is bound. The default is ``no''.
142 150
143 GSSAPIAuthentication 151 GSSAPIAuthentication
144 Specifies whether user authentication based on GSSAPI is allowed. 152 Specifies whether user authentication based on GSSAPI is allowed.
@@ -269,14 +277,12 @@ DESCRIPTION
269 default is ``no''. 277 default is ``no''.
270 278
271 PermitRootLogin 279 PermitRootLogin
272 Specifies whether root can login using ssh(1). The argument must 280 Specifies whether root can log in using ssh(1). The argument
273 be ``yes'', ``without-password'', ``forced-commands-only'' or 281 must be ``yes'', ``without-password'', ``forced-commands-only''
274 ``no''. The default is ``yes''. 282 or ``no''. The default is ``yes''.
275 283
276 If this option is set to ``without-password'' password authenti- 284 If this option is set to ``without-password'' password authenti-
277 cation is disabled for root. Note that other authentication 285 cation is disabled for root.
278 methods (e.g., keyboard-interactive/PAM) may still allow root to
279 login using a password.
280 286
281 If this option is set to ``forced-commands-only'' root login with 287 If this option is set to ``forced-commands-only'' root login with
282 public key authentication will be allowed, but only if the 288 public key authentication will be allowed, but only if the
@@ -284,7 +290,7 @@ DESCRIPTION
284 remote backups even if root login is normally not allowed). All 290 remote backups even if root login is normally not allowed). All
285 other authentication methods are disabled for root. 291 other authentication methods are disabled for root.
286 292
287 If this option is set to ``no'' root is not allowed to login. 293 If this option is set to ``no'' root is not allowed to log in.
288 294
289 PermitUserEnvironment 295 PermitUserEnvironment
290 Specifies whether ~/.ssh/environment and environment= options in 296 Specifies whether ~/.ssh/environment and environment= options in
@@ -302,8 +308,9 @@ DESCRIPTION
302 ListenAddress. 308 ListenAddress.
303 309
304 PrintLastLog 310 PrintLastLog
305 Specifies whether sshd should print the date and time when the 311 Specifies whether sshd should print the date and time of the last
306 user last logged in. The default is ``yes''. 312 user login when a user logs in interactively. The default is
313 ``yes''.
307 314
308 PrintMotd 315 PrintMotd
309 Specifies whether sshd should print /etc/motd when a user logs in 316 Specifies whether sshd should print /etc/motd when a user logs in