- markus@cvs.openbsd.org 2005/07/25 11:59:40

[kex.c kex.h myproposal.h packet.c packet.h servconf.c session.c] [sshconnect2.c sshd.c sshd_config sshd_config.5] add a new compression method that delays compression until the user has been authenticated successfully and set compression to 'delayed' for sshd. this breaks older openssh clients (< 3.5) if they insist on compression, so you have to re-enable compression in sshd_config. ok djm@
author: Damien Miller <djm@mindrot.org> 2005-07-26 21:54:56 +1000
committer: Damien Miller <djm@mindrot.org> 2005-07-26 21:54:56 +1000
commit: 9786e6e2a034a8273b5d0d3b8cd8caf063bb875a (patch)
tree: 0322eb7ffcdd5600fb25094e9627cd62291da2e4 /sshd_config.5
parent: 47655ee03a67ed89ef55c957e5a8183ca3113d2c (diff)
1 files changed, 6 insertions, 4 deletions
diff --git a/sshd_config.5 b/sshd_config.5
index cec2a2382..048e8924e 100644
--- a/sshd_config.5
+++ b/sshd_config.5
@@ -34,7 +34,7 @@
 .\" (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF
 .\" THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
 .\"
-.\" $OpenBSD: sshd_config.5,v 1.43 2005/05/23 23:32:46 djm Exp $
+.\" $OpenBSD: sshd_config.5,v 1.44 2005/07/25 11:59:40 markus Exp $
 .Dd September 25, 1999
 .Dt SSHD_CONFIG 5
 .Os
@@ -217,13 +217,15 @@ The default
 is 0, indicating that these messages will not be sent to the client.
 This option applies to protocol version 2 only.
 .It Cm Compression
-Specifies whether compression is allowed.
+Specifies whether compression is allowed, or delayed until
+the user has authenticated successfully.
 The argument must be
-.Dq yes
+.Dq yes ,
+.Dq delayed ,
 or
 .Dq no .
 The default is
-.Dq yes .
+.Dq delayed .
 .It Cm DenyGroups
 This keyword can be followed by a list of group name patterns, separated
 by spaces.
author	Damien Miller <djm@mindrot.org>	2005-07-26 21:54:56 +1000
committer	Damien Miller <djm@mindrot.org>	2005-07-26 21:54:56 +1000
commit	9786e6e2a034a8273b5d0d3b8cd8caf063bb875a (patch)
tree	0322eb7ffcdd5600fb25094e9627cd62291da2e4 /sshd_config.5
parent	47655ee03a67ed89ef55c957e5a8183ca3113d2c (diff)

diff --git a/sshd_config.5 b/sshd_config.5 index cec2a2382..048e8924e 100644 --- a/sshd_config.5 +++ b/sshd_config.5
@@ -34,7 +34,7 @@
34	.\" (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF	34	.\" (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF
35	.\" THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.	35	.\" THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
36	.\"	36	.\"
37	.\" $OpenBSD: sshd_config.5,v 1.43 2005/05/23 23:32:46 djm Exp $	37	.\" $OpenBSD: sshd_config.5,v 1.44 2005/07/25 11:59:40 markus Exp $
38	.Dd September 25, 1999	38	.Dd September 25, 1999
39	.Dt SSHD_CONFIG 5	39	.Dt SSHD_CONFIG 5
40	.Os	40	.Os
@@ -217,13 +217,15 @@ The default
217	is 0, indicating that these messages will not be sent to the client.	217	is 0, indicating that these messages will not be sent to the client.
218	This option applies to protocol version 2 only.	218	This option applies to protocol version 2 only.
219	.It Cm Compression	219	.It Cm Compression
220	Specifies whether compression is allowed.	220	Specifies whether compression is allowed, or delayed until
		221	the user has authenticated successfully.
221	The argument must be	222	The argument must be
222	.Dq yes	223	.Dq yes ,
		224	.Dq delayed ,
223	or	225	or
224	.Dq no .	226	.Dq no .
225	The default is	227	The default is
226	.Dq yes .	228	.Dq delayed .
227	.It Cm DenyGroups	229	.It Cm DenyGroups
228	This keyword can be followed by a list of group name patterns, separated	230	This keyword can be followed by a list of group name patterns, separated
229	by spaces.	231	by spaces.