diff options
| author | djm@openbsd.org <djm@openbsd.org> | 2018-06-19 02:59:41 +0000 |
|---|---|---|
| committer | Damien Miller <djm@mindrot.org> | 2018-06-19 13:00:50 +1000 |
| commit | 87ddd676da0f3abd08b778b12b53b91b670dc93c (patch) | |
| tree | 57bf11cf56aeddffdafdc97b74d7bc632c317df7 /sshd_config.5 | |
| parent | 26f96ca10ad0ec5da9b05b99de1e1ccea15a11be (diff) | |
upstream: allow bare port numbers to appear in PermitListen directives,
e.g.
PermitListen 2222 8080
is equivalent to:
PermitListen *:2222 *:8080
Some bonus manpage improvements, mostly from markus@
"looks fine" markus@
OpenBSD-Commit-ID: 6546b0cc5aab7f53d65ad0a348ca0ae591d6dd24
Diffstat (limited to 'sshd_config.5')
| -rw-r--r-- | sshd_config.5 | 22 |
1 files changed, 13 insertions, 9 deletions
diff --git a/sshd_config.5 b/sshd_config.5 index 14ebafd7b..c0683d4a1 100644 --- a/sshd_config.5 +++ b/sshd_config.5 | |||
| @@ -33,8 +33,8 @@ | |||
| 33 | .\" (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF | 33 | .\" (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF |
| 34 | .\" THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. | 34 | .\" THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. |
| 35 | .\" | 35 | .\" |
| 36 | .\" $OpenBSD: sshd_config.5,v 1.275 2018/06/09 03:18:11 djm Exp $ | 36 | .\" $OpenBSD: sshd_config.5,v 1.276 2018/06/19 02:59:41 djm Exp $ |
| 37 | .Dd $Mdocdate: June 9 2018 $ | 37 | .Dd $Mdocdate: June 19 2018 $ |
| 38 | .Dt SSHD_CONFIG 5 | 38 | .Dt SSHD_CONFIG 5 |
| 39 | .Os | 39 | .Os |
| 40 | .Sh NAME | 40 | .Sh NAME |
| @@ -1196,17 +1196,12 @@ The listen specification must be one of the following forms: | |||
| 1196 | .It | 1196 | .It |
| 1197 | .Cm PermitListen | 1197 | .Cm PermitListen |
| 1198 | .Sm off | 1198 | .Sm off |
| 1199 | .Ar host : port | 1199 | .Ar port |
| 1200 | .Sm on | ||
| 1201 | .It | ||
| 1202 | .Cm PermitListen | ||
| 1203 | .Sm off | ||
| 1204 | .Ar IPv4_addr : port | ||
| 1205 | .Sm on | 1200 | .Sm on |
| 1206 | .It | 1201 | .It |
| 1207 | .Cm PermitListen | 1202 | .Cm PermitListen |
| 1208 | .Sm off | 1203 | .Sm off |
| 1209 | .Ar \&[ IPv6_addr \&] : port | 1204 | .Ar host : port |
| 1210 | .Sm on | 1205 | .Sm on |
| 1211 | .El | 1206 | .El |
| 1212 | .Pp | 1207 | .Pp |
| @@ -1226,6 +1221,15 @@ By default all port forwarding listen requests are permitted. | |||
| 1226 | Note that the | 1221 | Note that the |
| 1227 | .Cm GatewayPorts | 1222 | .Cm GatewayPorts |
| 1228 | option may further restrict which addresses may be listened on. | 1223 | option may further restrict which addresses may be listened on. |
| 1224 | Note also that | ||
| 1225 | .Xr ssh 1 | ||
| 1226 | will request a listen host of | ||
| 1227 | .Dq localhost | ||
| 1228 | if no listen host was specifically requested, and this this name is | ||
| 1229 | treated differently to explict localhost addresses of | ||
| 1230 | .Dq 127.0.0.1 | ||
| 1231 | and | ||
| 1232 | .Dq ::1 . | ||
| 1229 | .It Cm PermitOpen | 1233 | .It Cm PermitOpen |
| 1230 | Specifies the destinations to which TCP port forwarding is permitted. | 1234 | Specifies the destinations to which TCP port forwarding is permitted. |
| 1231 | The forwarding specification must be one of the following forms: | 1235 | The forwarding specification must be one of the following forms: |