diff options
| author | naddy@openbsd.org <naddy@openbsd.org> | 2019-09-04 20:31:15 +0000 |
|---|---|---|
| committer | Damien Miller <djm@mindrot.org> | 2019-09-05 14:56:51 +1000 |
| commit | 4f9d75fbafde83d428e291516f8ce98e6b3a7c4b (patch) | |
| tree | c0011fc5f2daf2eb44e04315391c7708016154db /sshd_config.5 | |
| parent | db1e6f60f03641b2d17e0ab062242609f4ed4598 (diff) | |
upstream: Call comma-separated lists as such to clarify semantics.
Options such as Ciphers take values that may be a list of ciphers; the
complete list, not indiviual elements, may be prefixed with a dash or plus
character to remove from or append to the default list, respectively.
Users might read the current text as if each elment took an optional prefix,
so tweak the wording from "values" to "list" to prevent such ambiguity for
all options supporting these semantics.
Fix instances missed in first commit. ok jmc@ kn@
OpenBSD-Commit-ID: 7112522430a54fb9f15a7a26d26190ed84d5e417
Diffstat (limited to 'sshd_config.5')
| -rw-r--r-- | sshd_config.5 | 24 |
1 files changed, 12 insertions, 12 deletions
diff --git a/sshd_config.5 b/sshd_config.5 index e6ae87145..f42d10417 100644 --- a/sshd_config.5 +++ b/sshd_config.5 | |||
| @@ -33,8 +33,8 @@ | |||
| 33 | .\" (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF | 33 | .\" (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF |
| 34 | .\" THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. | 34 | .\" THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. |
| 35 | .\" | 35 | .\" |
| 36 | .\" $OpenBSD: sshd_config.5,v 1.288 2019/08/09 04:24:03 dtucker Exp $ | 36 | .\" $OpenBSD: sshd_config.5,v 1.289 2019/09/04 20:31:15 naddy Exp $ |
| 37 | .Dd $Mdocdate: August 9 2019 $ | 37 | .Dd $Mdocdate: September 4 2019 $ |
| 38 | .Dt SSHD_CONFIG 5 | 38 | .Dt SSHD_CONFIG 5 |
| 39 | .Os | 39 | .Os |
| 40 | .Sh NAME | 40 | .Sh NAME |
| @@ -454,11 +454,11 @@ indicating not to | |||
| 454 | .It Cm Ciphers | 454 | .It Cm Ciphers |
| 455 | Specifies the ciphers allowed. | 455 | Specifies the ciphers allowed. |
| 456 | Multiple ciphers must be comma-separated. | 456 | Multiple ciphers must be comma-separated. |
| 457 | If the specified value begins with a | 457 | If the specified list begins with a |
| 458 | .Sq + | 458 | .Sq + |
| 459 | character, then the specified ciphers will be appended to the default set | 459 | character, then the specified ciphers will be appended to the default set |
| 460 | instead of replacing them. | 460 | instead of replacing them. |
| 461 | If the specified value begins with a | 461 | If the specified list begins with a |
| 462 | .Sq - | 462 | .Sq - |
| 463 | character, then the specified ciphers (including wildcards) will be removed | 463 | character, then the specified ciphers (including wildcards) will be removed |
| 464 | from the default set instead of replacing them. | 464 | from the default set instead of replacing them. |
| @@ -668,11 +668,11 @@ The default is | |||
| 668 | .It Cm HostbasedAcceptedKeyTypes | 668 | .It Cm HostbasedAcceptedKeyTypes |
| 669 | Specifies the key types that will be accepted for hostbased authentication | 669 | Specifies the key types that will be accepted for hostbased authentication |
| 670 | as a list of comma-separated patterns. | 670 | as a list of comma-separated patterns. |
| 671 | Alternately if the specified value begins with a | 671 | Alternately if the specified list begins with a |
| 672 | .Sq + | 672 | .Sq + |
| 673 | character, then the specified key types will be appended to the default set | 673 | character, then the specified key types will be appended to the default set |
| 674 | instead of replacing them. | 674 | instead of replacing them. |
| 675 | If the specified value begins with a | 675 | If the specified list begins with a |
| 676 | .Sq - | 676 | .Sq - |
| 677 | character, then the specified key types (including wildcards) will be removed | 677 | character, then the specified key types (including wildcards) will be removed |
| 678 | from the default set instead of replacing them. | 678 | from the default set instead of replacing them. |
| @@ -873,11 +873,11 @@ The default is | |||
| 873 | .It Cm KexAlgorithms | 873 | .It Cm KexAlgorithms |
| 874 | Specifies the available KEX (Key Exchange) algorithms. | 874 | Specifies the available KEX (Key Exchange) algorithms. |
| 875 | Multiple algorithms must be comma-separated. | 875 | Multiple algorithms must be comma-separated. |
| 876 | Alternately if the specified value begins with a | 876 | Alternately if the specified list begins with a |
| 877 | .Sq + | 877 | .Sq + |
| 878 | character, then the specified methods will be appended to the default set | 878 | character, then the specified methods will be appended to the default set |
| 879 | instead of replacing them. | 879 | instead of replacing them. |
| 880 | If the specified value begins with a | 880 | If the specified list begins with a |
| 881 | .Sq - | 881 | .Sq - |
| 882 | character, then the specified methods (including wildcards) will be removed | 882 | character, then the specified methods (including wildcards) will be removed |
| 883 | from the default set instead of replacing them. | 883 | from the default set instead of replacing them. |
| @@ -990,11 +990,11 @@ Logging with a DEBUG level violates the privacy of users and is not recommended. | |||
| 990 | Specifies the available MAC (message authentication code) algorithms. | 990 | Specifies the available MAC (message authentication code) algorithms. |
| 991 | The MAC algorithm is used for data integrity protection. | 991 | The MAC algorithm is used for data integrity protection. |
| 992 | Multiple algorithms must be comma-separated. | 992 | Multiple algorithms must be comma-separated. |
| 993 | If the specified value begins with a | 993 | If the specified list begins with a |
| 994 | .Sq + | 994 | .Sq + |
| 995 | character, then the specified algorithms will be appended to the default set | 995 | character, then the specified algorithms will be appended to the default set |
| 996 | instead of replacing them. | 996 | instead of replacing them. |
| 997 | If the specified value begins with a | 997 | If the specified list begins with a |
| 998 | .Sq - | 998 | .Sq - |
| 999 | character, then the specified algorithms (including wildcards) will be removed | 999 | character, then the specified algorithms (including wildcards) will be removed |
| 1000 | from the default set instead of replacing them. | 1000 | from the default set instead of replacing them. |
| @@ -1395,11 +1395,11 @@ The default is | |||
| 1395 | .It Cm PubkeyAcceptedKeyTypes | 1395 | .It Cm PubkeyAcceptedKeyTypes |
| 1396 | Specifies the key types that will be accepted for public key authentication | 1396 | Specifies the key types that will be accepted for public key authentication |
| 1397 | as a list of comma-separated patterns. | 1397 | as a list of comma-separated patterns. |
| 1398 | Alternately if the specified value begins with a | 1398 | Alternately if the specified list begins with a |
| 1399 | .Sq + | 1399 | .Sq + |
| 1400 | character, then the specified key types will be appended to the default set | 1400 | character, then the specified key types will be appended to the default set |
| 1401 | instead of replacing them. | 1401 | instead of replacing them. |
| 1402 | If the specified value begins with a | 1402 | If the specified list begins with a |
| 1403 | .Sq - | 1403 | .Sq - |
| 1404 | character, then the specified key types (including wildcards) will be removed | 1404 | character, then the specified key types (including wildcards) will be removed |
| 1405 | from the default set instead of replacing them. | 1405 | from the default set instead of replacing them. |