diff options
| author | djm@openbsd.org <djm@openbsd.org> | 2018-06-09 03:03:10 +0000 |
|---|---|---|
| committer | Damien Miller <djm@mindrot.org> | 2018-06-09 13:11:00 +1000 |
| commit | 28013759f09ed3ebf7e8335e83a62936bd7a7f47 (patch) | |
| tree | 11704fdf59dbe3ebfe0151cbe82eb0847e12b420 /sshd_config.5 | |
| parent | 7082bb58a2eb878d23ec674587c742e5e9673c36 (diff) | |
upstream: add a SetEnv directive for sshd_config to allow an
administrator to explicitly specify environment variables set in sessions
started by sshd. These override the default environment and any variables set
by user configuration (PermitUserEnvironment, etc), but not the SSH_*
variables set by sshd itself.
ok markus@
OpenBSD-Commit-ID: b6a96c0001ccd7dd211df6cae9e961c20fd718c0
Diffstat (limited to 'sshd_config.5')
| -rw-r--r-- | sshd_config.5 | 18 |
1 files changed, 17 insertions, 1 deletions
diff --git a/sshd_config.5 b/sshd_config.5 index 395f5f6ac..c62a9c8e9 100644 --- a/sshd_config.5 +++ b/sshd_config.5 | |||
| @@ -33,7 +33,7 @@ | |||
| 33 | .\" (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF | 33 | .\" (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF |
| 34 | .\" THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. | 34 | .\" THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. |
| 35 | .\" | 35 | .\" |
| 36 | .\" $OpenBSD: sshd_config.5,v 1.273 2018/06/09 03:01:12 djm Exp $ | 36 | .\" $OpenBSD: sshd_config.5,v 1.274 2018/06/09 03:03:10 djm Exp $ |
| 37 | .Dd $Mdocdate: June 9 2018 $ | 37 | .Dd $Mdocdate: June 9 2018 $ |
| 38 | .Dt SSHD_CONFIG 5 | 38 | .Dt SSHD_CONFIG 5 |
| 39 | .Os | 39 | .Os |
| @@ -1138,6 +1138,7 @@ Available keywords are | |||
| 1138 | .Cm RekeyLimit , | 1138 | .Cm RekeyLimit , |
| 1139 | .Cm RevokedKeys , | 1139 | .Cm RevokedKeys , |
| 1140 | .Cm RDomain , | 1140 | .Cm RDomain , |
| 1141 | .Cm SetEnv , | ||
| 1141 | .Cm StreamLocalBindMask , | 1142 | .Cm StreamLocalBindMask , |
| 1142 | .Cm StreamLocalBindUnlink , | 1143 | .Cm StreamLocalBindUnlink , |
| 1143 | .Cm TrustedUserCAKeys , | 1144 | .Cm TrustedUserCAKeys , |
| @@ -1445,6 +1446,21 @@ will be bound to this | |||
| 1445 | If the routing domain is set to | 1446 | If the routing domain is set to |
| 1446 | .Cm \&%D , | 1447 | .Cm \&%D , |
| 1447 | then the domain in which the incoming connection was received will be applied. | 1448 | then the domain in which the incoming connection was received will be applied. |
| 1449 | .It Cm SetEnv | ||
| 1450 | Specifies one or more environment variables to set in child sessions started | ||
| 1451 | by | ||
| 1452 | .Xr sshd 8 | ||
| 1453 | as | ||
| 1454 | .Dq NAME=VALUE . | ||
| 1455 | The environment value may be quoted (e.g. if it contains whitespace | ||
| 1456 | characters). | ||
| 1457 | Environment variables set by | ||
| 1458 | .Cm SetEnv | ||
| 1459 | override the default environment and any variables specified by the user | ||
| 1460 | via | ||
| 1461 | .Cm AcceptEnv | ||
| 1462 | or | ||
| 1463 | .Cm PermitUserEnvironment . | ||
| 1448 | .It Cm StreamLocalBindMask | 1464 | .It Cm StreamLocalBindMask |
| 1449 | Sets the octal file creation mode mask | 1465 | Sets the octal file creation mode mask |
| 1450 | .Pq umask | 1466 | .Pq umask |