2 files changed, 34 insertions, 31 deletions
diff --git a/ChangeLog b/ChangeLog
index 35b1b7b38..c71d8531d 100644
--- a/ChangeLog
+++ b/ChangeLog
@@ -33,6 +33,9 @@
     [ssh.1 ssh_config.5]
     make `!command' a little clearer;
     ok reyk
+   - jmc@cvs.openbsd.org 2005/12/08 15:06:29
+     [ssh_config.5]
+     keep options in order;
 20051201
 - (djm) [envpass.sh] Remove regress script that was accidentally committed 
@@ -3425,4 +3428,4 @@
   - (djm) Trim deprecated options from INSTALL. Mention UsePAM
   - (djm) Fix quote handling in sftp; Patch from admorten AT umich.edu
-$Id: ChangeLog,v 1.4022 2005/12/13 08:30:27 djm Exp $
+$Id: ChangeLog,v 1.4023 2005/12/13 08:30:45 djm Exp $
diff --git a/ssh_config.5 b/ssh_config.5
index 440a6d71d..281b4046b 100644
--- a/ssh_config.5
+++ b/ssh_config.5
@@ -34,7 +34,7 @@
 .\" (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF
 .\" THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
 .\"
-.\" $OpenBSD: ssh_config.5,v 1.66 2005/12/08 14:59:44 jmc Exp $
+.\" $OpenBSD: ssh_config.5,v 1.67 2005/12/08 15:06:29 jmc Exp $
 .Dd September 25, 1999
 .Dt SSH_CONFIG 5
 .Os
@@ -517,23 +517,6 @@ Default is the name given on the command line.
 Numeric IP addresses are also permitted (both on the command line and in
 .Cm HostName
 specifications).
-.It Cm IdentityFile
-Specifies a file from which the user's RSA or DSA authentication identity
-is read.
-The default is
-.Pa ~/.ssh/identity
-for protocol version 1, and
-.Pa ~/.ssh/id_rsa
-and
-.Pa ~/.ssh/id_dsa
-for protocol version 2.
-Additionally, any identities represented by the authentication agent
-will be used for authentication.
-The file name may use the tilde
-syntax to refer to a user's home directory.
-It is possible to have
-multiple identity files specified in configuration files; all these
-identities will be tried in sequence.
 .It Cm IdentitiesOnly
 Specifies that
 .Nm ssh
@@ -552,6 +535,23 @@ This option is intented for situations where
 offers many different identities.
 The default is
 .Dq no .
+.It Cm IdentityFile
+Specifies a file from which the user's RSA or DSA authentication identity
+is read.
+The default is
+.Pa ~/.ssh/identity
+for protocol version 1, and
+.Pa ~/.ssh/id_rsa
+and
+.Pa ~/.ssh/id_dsa
+for protocol version 2.
+Additionally, any identities represented by the authentication agent
+will be used for authentication.
+The file name may use the tilde
+syntax to refer to a user's home directory.
+It is possible to have
+multiple identity files specified in configuration files; all these
+identities will be tried in sequence.
 .It Cm KbdInteractiveDevices
 Specifies the list of methods to use in keyboard-interactive authentication.
 Multiple method names must be comma-separated.
@@ -633,9 +633,6 @@ or
 .Dq no .
 The default is
 .Dq yes .
-.It Cm Port
-Specifies the port number to connect on the remote host.
-Default is 22.
 .It Cm PermitLocalCommand
 Allow local command execution via the
 .Ic LocalCommand
@@ -649,6 +646,9 @@ or
 .Dq no .
 The default is
 .Dq no .
+.It Cm Port
+Specifies the port number to connect on the remote host.
+Default is 22.
 .It Cm PreferredAuthentications
 Specifies the order in which the client should try protocol 2
 authentication methods.
@@ -796,15 +796,6 @@ across multiple
 .Cm SendEnv
 directives.
 The default is not to send any environment variables.
-.It Cm ServerAliveInterval
-Sets a timeout interval in seconds after which if no data has been received
-from the server,
-.Nm ssh
-will send a message through the encrypted
-channel to request a response from the server.
-The default
-is 0, indicating that these messages will not be sent to the server.
-This option applies to protocol version 2 only.
 .It Cm ServerAliveCountMax
 Sets the number of server alive messages (see above) which may be
 sent without
@@ -832,6 +823,15 @@ If, for example,
 .Cm ServerAliveCountMax
 is left at the default, if the server becomes unresponsive ssh
 will disconnect after approximately 45 seconds.
+.It Cm ServerAliveInterval
+Sets a timeout interval in seconds after which if no data has been received
+from the server,
+.Nm ssh
+will send a message through the encrypted
+channel to request a response from the server.
+The default
+is 0, indicating that these messages will not be sent to the server.
+This option applies to protocol version 2 only.
 .It Cm SmartcardDevice
 Specifies which smartcard device to use.
 The argument to this keyword is the device

diff --git a/ChangeLog b/ChangeLog index 35b1b7b38..c71d8531d 100644 --- a/ChangeLog +++ b/ChangeLog
@@ -33,6 +33,9 @@
33	[ssh.1 ssh_config.5]	33	[ssh.1 ssh_config.5]
34	make `!command' a little clearer;	34	make `!command' a little clearer;
35	ok reyk	35	ok reyk
		36	- jmc@cvs.openbsd.org 2005/12/08 15:06:29
		37	[ssh_config.5]
		38	keep options in order;
36		39
37	20051201	40	20051201
38	- (djm) [envpass.sh] Remove regress script that was accidentally committed	41	- (djm) [envpass.sh] Remove regress script that was accidentally committed
@@ -3425,4 +3428,4 @@
3425	- (djm) Trim deprecated options from INSTALL. Mention UsePAM	3428	- (djm) Trim deprecated options from INSTALL. Mention UsePAM
3426	- (djm) Fix quote handling in sftp; Patch from admorten AT umich.edu	3429	- (djm) Fix quote handling in sftp; Patch from admorten AT umich.edu
3427		3430
3428	$Id: ChangeLog,v 1.4022 2005/12/13 08:30:27 djm Exp $	3431	$Id: ChangeLog,v 1.4023 2005/12/13 08:30:45 djm Exp $


diff --git a/ssh_config.5 b/ssh_config.5 index 440a6d71d..281b4046b 100644 --- a/ssh_config.5 +++ b/ssh_config.5
@@ -34,7 +34,7 @@
34	.\" (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF	34	.\" (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF
35	.\" THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.	35	.\" THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
36	.\"	36	.\"
37	.\" $OpenBSD: ssh_config.5,v 1.66 2005/12/08 14:59:44 jmc Exp $	37	.\" $OpenBSD: ssh_config.5,v 1.67 2005/12/08 15:06:29 jmc Exp $
38	.Dd September 25, 1999	38	.Dd September 25, 1999
39	.Dt SSH_CONFIG 5	39	.Dt SSH_CONFIG 5
40	.Os	40	.Os
@@ -517,23 +517,6 @@ Default is the name given on the command line.
517	Numeric IP addresses are also permitted (both on the command line and in	517	Numeric IP addresses are also permitted (both on the command line and in
518	.Cm HostName	518	.Cm HostName
519	specifications).	519	specifications).
520	.It Cm IdentityFile
521	Specifies a file from which the user's RSA or DSA authentication identity
522	is read.
523	The default is
524	.Pa ~/.ssh/identity
525	for protocol version 1, and
526	.Pa ~/.ssh/id_rsa
527	and
528	.Pa ~/.ssh/id_dsa
529	for protocol version 2.
530	Additionally, any identities represented by the authentication agent
531	will be used for authentication.
532	The file name may use the tilde
533	syntax to refer to a user's home directory.
534	It is possible to have
535	multiple identity files specified in configuration files; all these
536	identities will be tried in sequence.
537	.It Cm IdentitiesOnly	520	.It Cm IdentitiesOnly
538	Specifies that	521	Specifies that
539	.Nm ssh	522	.Nm ssh
@@ -552,6 +535,23 @@ This option is intented for situations where
552	offers many different identities.	535	offers many different identities.
553	The default is	536	The default is
554	.Dq no .	537	.Dq no .
		538	.It Cm IdentityFile
		539	Specifies a file from which the user's RSA or DSA authentication identity
		540	is read.
		541	The default is
		542	.Pa ~/.ssh/identity
		543	for protocol version 1, and
		544	.Pa ~/.ssh/id_rsa
		545	and
		546	.Pa ~/.ssh/id_dsa
		547	for protocol version 2.
		548	Additionally, any identities represented by the authentication agent
		549	will be used for authentication.
		550	The file name may use the tilde
		551	syntax to refer to a user's home directory.
		552	It is possible to have
		553	multiple identity files specified in configuration files; all these
		554	identities will be tried in sequence.
555	.It Cm KbdInteractiveDevices	555	.It Cm KbdInteractiveDevices
556	Specifies the list of methods to use in keyboard-interactive authentication.	556	Specifies the list of methods to use in keyboard-interactive authentication.
557	Multiple method names must be comma-separated.	557	Multiple method names must be comma-separated.
@@ -633,9 +633,6 @@ or
633	.Dq no .	633	.Dq no .
634	The default is	634	The default is
635	.Dq yes .	635	.Dq yes .
636	.It Cm Port
637	Specifies the port number to connect on the remote host.
638	Default is 22.
639	.It Cm PermitLocalCommand	636	.It Cm PermitLocalCommand
640	Allow local command execution via the	637	Allow local command execution via the
641	.Ic LocalCommand	638	.Ic LocalCommand
@@ -649,6 +646,9 @@ or
649	.Dq no .	646	.Dq no .
650	The default is	647	The default is
651	.Dq no .	648	.Dq no .
		649	.It Cm Port
		650	Specifies the port number to connect on the remote host.
		651	Default is 22.
652	.It Cm PreferredAuthentications	652	.It Cm PreferredAuthentications
653	Specifies the order in which the client should try protocol 2	653	Specifies the order in which the client should try protocol 2
654	authentication methods.	654	authentication methods.
@@ -796,15 +796,6 @@ across multiple
796	.Cm SendEnv	796	.Cm SendEnv
797	directives.	797	directives.
798	The default is not to send any environment variables.	798	The default is not to send any environment variables.
799	.It Cm ServerAliveInterval
800	Sets a timeout interval in seconds after which if no data has been received
801	from the server,
802	.Nm ssh
803	will send a message through the encrypted
804	channel to request a response from the server.
805	The default
806	is 0, indicating that these messages will not be sent to the server.
807	This option applies to protocol version 2 only.
808	.It Cm ServerAliveCountMax	799	.It Cm ServerAliveCountMax
809	Sets the number of server alive messages (see above) which may be	800	Sets the number of server alive messages (see above) which may be
810	sent without	801	sent without
@@ -832,6 +823,15 @@ If, for example,
832	.Cm ServerAliveCountMax	823	.Cm ServerAliveCountMax
833	is left at the default, if the server becomes unresponsive ssh	824	is left at the default, if the server becomes unresponsive ssh
834	will disconnect after approximately 45 seconds.	825	will disconnect after approximately 45 seconds.
		826	.It Cm ServerAliveInterval
		827	Sets a timeout interval in seconds after which if no data has been received
		828	from the server,
		829	.Nm ssh
		830	will send a message through the encrypted
		831	channel to request a response from the server.
		832	The default
		833	is 0, indicating that these messages will not be sent to the server.
		834	This option applies to protocol version 2 only.
835	.It Cm SmartcardDevice	835	.It Cm SmartcardDevice
836	Specifies which smartcard device to use.	836	Specifies which smartcard device to use.
837	The argument to this keyword is the device	837	The argument to this keyword is the device