2 files changed, 33 insertions, 33 deletions
diff --git a/ssh.1 b/ssh.1
index 36703e205..10054445c 100644
--- a/ssh.1
+++ b/ssh.1
@@ -9,7 +9,7 @@
 .\"
 .\" Created: Sat Apr 22 21:55:14 1995 ylo
 .\"
-.\" $Id: ssh.1,v 1.3 1999/10/28 23:15:50 damien Exp $
+.\" $Id: ssh.1,v 1.4 1999/10/28 23:17:36 damien Exp $
 .\"
 .Dd September 25, 1999
 .Dt SSH 1
@@ -66,7 +66,7 @@ his/her identity to the remote machine using one of several methods.
 First, if the machine the user logs in from is listed in
 .Pa /etc/hosts.equiv
 or
-.Pa /etc/shosts.equiv
+.Pa /etc/ssh/shosts.equiv
 on the remote machine, and the user names are
 the same on both sides, the user is immediately permitted to log in.
 Second, if 
@@ -89,10 +89,10 @@ means that if the login would be permitted by
 .Pa \&.shosts ,
 .Pa /etc/hosts.equiv ,
 or
-.Pa /etc/shosts.equiv ,
+.Pa /etc/ssh/shosts.equiv ,
 and if additionally the server can verify the client's
 host key (see 
-.Pa /etc/ssh_known_hosts
+.Pa /etc/ssh/ssh_known_hosts
 in the
 .Sx FILES
 section), only then login is
@@ -248,7 +248,7 @@ identifications for all hosts it has ever been used with.  The
 database is stored in 
 .Pa \&.ssh/known_hosts
 in the user's home directory.  Additionally, the file 
-.Pa /etc/ssh_known_hosts
+.Pa /etc/ssh/ssh_known_hosts
 is automatically checked for known hosts.  Any new hosts are
 automatically added to the user's file.  If a host's identification
 ever changes,
@@ -416,7 +416,7 @@ obtains configuration data from the following sources (in this order):
 command line options, user's configuration file
 .Pq Pa $HOME/.ssh/config ,
 and system-wide configuration file
-.Pq Pa /etc/ssh_config .
+.Pq Pa /etc/ssh/ssh_config .
 For each parameter, the first obtained value
 will be used.  The configuration files contain sections bracketed by
 "Host" specifications, and that section is only applied for hosts that
@@ -540,7 +540,7 @@ The default is
 .Dq no .
 .It Cm GlobalKnownHostsFile
 Specifies a file to use instead of 
-.Pa /etc/ssh_known_hosts .
+.Pa /etc/ssh/ssh_known_hosts .
 .It Cm HostName
 Specifies the real host name to log into.  This can be used to specify
 nicnames or abbreviations for hosts.  Default is the name given on the
@@ -672,7 +672,7 @@ ssh will never automatically add host keys to the
 file, and refuses to connect hosts whose host key has changed.  This
 provides maximum protection against trojan horse attacks.  However, it
 can be somewhat annoying if you don't have good
-.Pa /etc/ssh_known_hosts
+.Pa /etc/ssh/ssh_known_hosts
 files installed and frequently
 connect new hosts.  Basically this option forces the user to manually
 add any new hosts.  Normally this option is disabled, and new hosts
@@ -779,7 +779,7 @@ to the environment.
 .It Pa $HOME/.ssh/known_hosts
 Records host keys for all hosts the user has logged into (that are not
 in
-.Pa /etc/ssh_known_hosts ) .
+.Pa /etc/ssh/ssh_known_hosts ) .
 See
 .Xr sshd 8 .
 .It Pa $HOME/.ssh/random_seed
@@ -824,7 +824,7 @@ identity files (that is, each line contains the number of bits in
 modulus, public exponent, modulus, and comment fields, separated by
 spaces).  This file is not highly sensitive, but the recommended
 permissions are read/write for the user, and not accessible by others.
-.It Pa /etc/ssh_known_hosts
+.It Pa /etc/ssh/ssh_known_hosts
 Systemwide list of known host keys.  This file should be prepared by the
 system administrator to contain the public host keys of all machines in the
 organization.  This file should be world-readable.  This file contains
@@ -843,7 +843,7 @@ to verify the client host when logging in; other names are needed because
 does not convert the user-supplied name to a canonical name before
 checking the key, because someone with access to the name servers
 would then be able to fool host authentication.
-.It Pa /etc/ssh_config
+.It Pa /etc/ssh/ssh_config
 Systemwide configuration file.  This file provides defaults for those
 values that are not specified in the user's configuration file, and
 for those users who do not have a configuration file.  This file must
@@ -870,7 +870,7 @@ Note that by default
 will be installed so that it requires successful RSA host
 authentication before permitting \s+2.\s0rhosts authentication.  If your
 server machine does not have the client's host key in
-.Pa /etc/ssh_known_hosts ,
+.Pa /etc/ssh/ssh_known_hosts ,
 you can store it in
 .Pa $HOME/.ssh/known_hosts .
 The easiest way to do this is to
@@ -897,13 +897,13 @@ manual page).  If the client host is found in this file, login is
 automatically permitted provided client and server user names are the
 same.  Additionally, successful RSA host authentication is normally
 required.  This file should only be writable by root.
-.It Pa /etc/shosts.equiv
+.It Pa /etc/ssh/shosts.equiv
 This file is processed exactly as 
 .Pa /etc/hosts.equiv .
 This file may be useful to permit logins using
 .Nm
 but not using rsh/rlogin.
-.It Pa /etc/sshrc
+.It Pa /etc/ssh/sshrc
 Commands in this file are executed by
 .Nm
 when the user logs in just before the user's shell (or command) is started.
diff --git a/sshd.8 b/sshd.8
index a5c3f9554..b19880f0e 100644
--- a/sshd.8
+++ b/sshd.8
@@ -9,7 +9,7 @@
 .\"
 .\" Created: Sat Apr 22 21:55:14 1995 ylo
 .\"
-.\" $Id: sshd.8,v 1.3 1999/10/28 23:15:50 damien Exp $
+.\" $Id: sshd.8,v 1.4 1999/10/28 23:17:36 damien Exp $
 .\"
 .Dd September 25, 1999
 .Dt SSHD 8
@@ -118,7 +118,7 @@ not fork and will only process one connection.  This option is only
 intended for debugging for the server.
 .It Fl f Ar configuration_file
 Specifies the name of the configuration file.  The default is
-.Pa /etc/sshd_config .
+.Pa /etc/ssh/sshd_config .
 .Nm
 refuses to start if there is no configuration file.
 .It Fl g Ar login_grace_time
@@ -128,7 +128,7 @@ this many seconds, the server disconnects and exits.  A value of zero
 indicates no limit.
 .It Fl h Ar host_key_file
 Specifies the file from which the host key is read (default
-.Pa /etc/ssh_host_key ) .
+.Pa /etc/ssh/ssh_host_key ) .
 This option must be given if
 .Nm
 is not run as root (as the normal
@@ -165,7 +165,7 @@ Do not print an error message if RSA support is missing.
 .Sh CONFIGURATION FILE
 .Nm
 reads configuration data from 
-.Pa /etc/sshd_config
+.Pa /etc/ssh/sshd_config
 (or the file specified with
 .Fl f
 on the command line).  The file
@@ -242,7 +242,7 @@ The default is
 .Dq no .
 .It Cm HostKey
 Specifies the file containing the private host key (default
-.Pa /etc/ssh_host_key ) .
+.Pa /etc/ssh/ssh_host_key ) .
 Note that
 .Nm
 does not start if this file is group/world-accessible.
@@ -251,7 +251,7 @@ Specifies that rhosts and shosts files will not be used in
 authentication.
 .Pa /etc/hosts.equiv
 and
-.Pa /etc/shosts.equiv 
+.Pa /etc/ssh/shosts.equiv 
 are still used.  The default is 
 .Dq no .
 .It Cm KeepAlive
@@ -455,7 +455,7 @@ Changes to user's home directory.
 If
 .Pa $HOME/.ssh/rc
 exists, runs it; else if
-.Pa /etc/sshrc
+.Pa /etc/ssh/sshrc
 exists, runs
 it; otherwise runs xauth.  The
 .Dq rc
@@ -541,7 +541,7 @@ from="*.niksula.hut.fi,!pc.niksula.hut.fi" 1024 35 23.\|.\|.\|2334 ylo@niksula
 command="dump /home",no-pty,no-port-forwarding 1024 33 23.\|.\|.\|2323 backup.hut.fi
 .Sh SSH_KNOWN_HOSTS FILE FORMAT
 The 
-.Pa /etc/ssh_known_hosts
+.Pa /etc/ssh/ssh_known_hosts
 and 
 .Pa $HOME/.ssh/known_hosts
 files contain host public keys for all known hosts.  The global file should
@@ -564,7 +564,7 @@ pattern on the line.
 .Pp
 Bits, exponent, and modulus are taken directly from the host key; they
 can be obtained, e.g., from
-.Pa /etc/ssh_host_key.pub .
+.Pa /etc/ssh/ssh_host_key.pub .
 The optional comment field continues to the end of the line, and is not used.
 .Pp
 Lines starting with
@@ -583,25 +583,25 @@ Note that the lines in these files are typically hundreds of characters
 long, and you definitely don't want to type in the host keys by hand.
 Rather, generate them by a script
 or by taking 
-.Pa /etc/ssh_host_key.pub
+.Pa /etc/ssh/ssh_host_key.pub
 and adding the host names at the front.
 .Ss Examples
 closenet,closenet.hut.fi,.\|.\|.\|,130.233.208.41 1024 37 159.\|.\|.93 closenet.hut.fi
 .Sh FILES
 .Bl -tag -width Ds
-.It Pa /etc/sshd_config
+.It Pa /etc/ssh/sshd_config
 Contains configuration data for
 .Nm sshd .
 This file should be writable by root only, but it is recommended
 (though not necessary) that it be world-readable.
-.It Pa /etc/ssh_host_key
+.It Pa /etc/ssh/ssh_host_key
 Contains the private part of the host key.
 This file should only be owned by root, readable only by root, and not
 accessible to others.
 Note that
 .Nm
 does not start if this file is group/world-accessible.
-.It Pa /etc/ssh_host_key.pub
+.It Pa /etc/ssh/ssh_host_key.pub
 Contains the public part of the host key.
 This file should be world-readable but writable only by
 root.  Its contents should match the private part.  This file is not
@@ -622,17 +622,17 @@ This file must be readable by root (which may on some machines imply
 it being world-readable if the user's home directory resides on an NFS
 volume).  It is recommended that it not be accessible by others.  The
 format of this file is described above.
-.It Pa /etc/ssh_known_hosts
+.It Pa /etc/ssh/ssh_known_hosts
 This file is consulted when using rhosts with RSA host
 authentication to check the public key of the host.  The key must be
 listed in this file to be accepted.
 .It Pa $HOME/.ssh/known_hosts
 The client uses this file
 and
-.Pa /etc/ssh_known_hosts
+.Pa /etc/ssh/ssh_known_hosts
 to verify that the remote host is the one we intended to
 connect. These files should be writable only by root/the owner.
-.Pa /etc/ssh_known_hosts
+.Pa /etc/ssh/ssh_known_hosts
 should be world-readable, and
 .Pa $HOME/.ssh/known_hosts
 can but need not be world-readable.
@@ -694,7 +694,7 @@ user root access.  The only valid use for user names that I can think
 of is in negative entries.
 .Pp
 Note that this warning also applies to rsh/rlogin.
-.It Pa /etc/shosts.equiv
+.It Pa /etc/ssh/shosts.equiv
 This is processed exactly as
 .Pa /etc/hosts.equiv .
 However, this file may be useful in environments that want to run both
@@ -724,13 +724,13 @@ something similar to: "if read proto cookie; then echo add $DISPLAY
 $proto $cookie | xauth -q -; fi".
 .Pp
 If this file does not exist,
-.Pa /etc/sshrc
+.Pa /etc/ssh/sshrc
 is run, and if that
 does not exist either, xauth is used to store the cookie.
 .Pp
 This file should be writable only by the user, and need not be
 readable by anyone else.
-.It Pa /etc/sshrc
+.It Pa /etc/ssh/sshrc
 Like
 .Pa $HOME/.ssh/rc .
 This can be used to specify

diff --git a/ssh.1 b/ssh.1 index 36703e205..10054445c 100644 --- a/ssh.1 +++ b/ssh.1
@@ -9,7 +9,7 @@
9	.\"	9	.\"
10	.\" Created: Sat Apr 22 21:55:14 1995 ylo	10	.\" Created: Sat Apr 22 21:55:14 1995 ylo
11	.\"	11	.\"
12	.\" $Id: ssh.1,v 1.3 1999/10/28 23:15:50 damien Exp $	12	.\" $Id: ssh.1,v 1.4 1999/10/28 23:17:36 damien Exp $
13	.\"	13	.\"
14	.Dd September 25, 1999	14	.Dd September 25, 1999
15	.Dt SSH 1	15	.Dt SSH 1
@@ -66,7 +66,7 @@ his/her identity to the remote machine using one of several methods.
66	First, if the machine the user logs in from is listed in	66	First, if the machine the user logs in from is listed in
67	.Pa /etc/hosts.equiv	67	.Pa /etc/hosts.equiv
68	or	68	or
69	.Pa /etc/shosts.equiv	69	.Pa /etc/ssh/shosts.equiv
70	on the remote machine, and the user names are	70	on the remote machine, and the user names are
71	the same on both sides, the user is immediately permitted to log in.	71	the same on both sides, the user is immediately permitted to log in.
72	Second, if	72	Second, if
@@ -89,10 +89,10 @@ means that if the login would be permitted by
89	.Pa \&.shosts ,	89	.Pa \&.shosts ,
90	.Pa /etc/hosts.equiv ,	90	.Pa /etc/hosts.equiv ,
91	or	91	or
92	.Pa /etc/shosts.equiv ,	92	.Pa /etc/ssh/shosts.equiv ,
93	and if additionally the server can verify the client's	93	and if additionally the server can verify the client's
94	host key (see	94	host key (see
95	.Pa /etc/ssh_known_hosts	95	.Pa /etc/ssh/ssh_known_hosts
96	in the	96	in the
97	.Sx FILES	97	.Sx FILES
98	section), only then login is	98	section), only then login is
@@ -248,7 +248,7 @@ identifications for all hosts it has ever been used with. The
248	database is stored in	248	database is stored in
249	.Pa \&.ssh/known_hosts	249	.Pa \&.ssh/known_hosts
250	in the user's home directory. Additionally, the file	250	in the user's home directory. Additionally, the file
251	.Pa /etc/ssh_known_hosts	251	.Pa /etc/ssh/ssh_known_hosts
252	is automatically checked for known hosts. Any new hosts are	252	is automatically checked for known hosts. Any new hosts are
253	automatically added to the user's file. If a host's identification	253	automatically added to the user's file. If a host's identification
254	ever changes,	254	ever changes,
@@ -416,7 +416,7 @@ obtains configuration data from the following sources (in this order):
416	command line options, user's configuration file	416	command line options, user's configuration file
417	.Pq Pa $HOME/.ssh/config ,	417	.Pq Pa $HOME/.ssh/config ,
418	and system-wide configuration file	418	and system-wide configuration file
419	.Pq Pa /etc/ssh_config .	419	.Pq Pa /etc/ssh/ssh_config .
420	For each parameter, the first obtained value	420	For each parameter, the first obtained value
421	will be used. The configuration files contain sections bracketed by	421	will be used. The configuration files contain sections bracketed by
422	"Host" specifications, and that section is only applied for hosts that	422	"Host" specifications, and that section is only applied for hosts that
@@ -540,7 +540,7 @@ The default is
540	.Dq no .	540	.Dq no .
541	.It Cm GlobalKnownHostsFile	541	.It Cm GlobalKnownHostsFile
542	Specifies a file to use instead of	542	Specifies a file to use instead of
543	.Pa /etc/ssh_known_hosts .	543	.Pa /etc/ssh/ssh_known_hosts .
544	.It Cm HostName	544	.It Cm HostName
545	Specifies the real host name to log into. This can be used to specify	545	Specifies the real host name to log into. This can be used to specify
546	nicnames or abbreviations for hosts. Default is the name given on the	546	nicnames or abbreviations for hosts. Default is the name given on the
@@ -672,7 +672,7 @@ ssh will never automatically add host keys to the
672	file, and refuses to connect hosts whose host key has changed. This	672	file, and refuses to connect hosts whose host key has changed. This
673	provides maximum protection against trojan horse attacks. However, it	673	provides maximum protection against trojan horse attacks. However, it
674	can be somewhat annoying if you don't have good	674	can be somewhat annoying if you don't have good
675	.Pa /etc/ssh_known_hosts	675	.Pa /etc/ssh/ssh_known_hosts
676	files installed and frequently	676	files installed and frequently
677	connect new hosts. Basically this option forces the user to manually	677	connect new hosts. Basically this option forces the user to manually
678	add any new hosts. Normally this option is disabled, and new hosts	678	add any new hosts. Normally this option is disabled, and new hosts
@@ -779,7 +779,7 @@ to the environment.
779	.It Pa $HOME/.ssh/known_hosts	779	.It Pa $HOME/.ssh/known_hosts
780	Records host keys for all hosts the user has logged into (that are not	780	Records host keys for all hosts the user has logged into (that are not
781	in	781	in
782	.Pa /etc/ssh_known_hosts ) .	782	.Pa /etc/ssh/ssh_known_hosts ) .
783	See	783	See
784	.Xr sshd 8 .	784	.Xr sshd 8 .
785	.It Pa $HOME/.ssh/random_seed	785	.It Pa $HOME/.ssh/random_seed
@@ -824,7 +824,7 @@ identity files (that is, each line contains the number of bits in
824	modulus, public exponent, modulus, and comment fields, separated by	824	modulus, public exponent, modulus, and comment fields, separated by
825	spaces). This file is not highly sensitive, but the recommended	825	spaces). This file is not highly sensitive, but the recommended
826	permissions are read/write for the user, and not accessible by others.	826	permissions are read/write for the user, and not accessible by others.
827	.It Pa /etc/ssh_known_hosts	827	.It Pa /etc/ssh/ssh_known_hosts
828	Systemwide list of known host keys. This file should be prepared by the	828	Systemwide list of known host keys. This file should be prepared by the
829	system administrator to contain the public host keys of all machines in the	829	system administrator to contain the public host keys of all machines in the
830	organization. This file should be world-readable. This file contains	830	organization. This file should be world-readable. This file contains
@@ -843,7 +843,7 @@ to verify the client host when logging in; other names are needed because
843	does not convert the user-supplied name to a canonical name before	843	does not convert the user-supplied name to a canonical name before
844	checking the key, because someone with access to the name servers	844	checking the key, because someone with access to the name servers
845	would then be able to fool host authentication.	845	would then be able to fool host authentication.
846	.It Pa /etc/ssh_config	846	.It Pa /etc/ssh/ssh_config
847	Systemwide configuration file. This file provides defaults for those	847	Systemwide configuration file. This file provides defaults for those
848	values that are not specified in the user's configuration file, and	848	values that are not specified in the user's configuration file, and
849	for those users who do not have a configuration file. This file must	849	for those users who do not have a configuration file. This file must
@@ -870,7 +870,7 @@ Note that by default
870	will be installed so that it requires successful RSA host	870	will be installed so that it requires successful RSA host
871	authentication before permitting \s+2.\s0rhosts authentication. If your	871	authentication before permitting \s+2.\s0rhosts authentication. If your
872	server machine does not have the client's host key in	872	server machine does not have the client's host key in
873	.Pa /etc/ssh_known_hosts ,	873	.Pa /etc/ssh/ssh_known_hosts ,
874	you can store it in	874	you can store it in
875	.Pa $HOME/.ssh/known_hosts .	875	.Pa $HOME/.ssh/known_hosts .
876	The easiest way to do this is to	876	The easiest way to do this is to
@@ -897,13 +897,13 @@ manual page). If the client host is found in this file, login is
897	automatically permitted provided client and server user names are the	897	automatically permitted provided client and server user names are the
898	same. Additionally, successful RSA host authentication is normally	898	same. Additionally, successful RSA host authentication is normally
899	required. This file should only be writable by root.	899	required. This file should only be writable by root.
900	.It Pa /etc/shosts.equiv	900	.It Pa /etc/ssh/shosts.equiv
901	This file is processed exactly as	901	This file is processed exactly as
902	.Pa /etc/hosts.equiv .	902	.Pa /etc/hosts.equiv .
903	This file may be useful to permit logins using	903	This file may be useful to permit logins using
904	.Nm	904	.Nm
905	but not using rsh/rlogin.	905	but not using rsh/rlogin.
906	.It Pa /etc/sshrc	906	.It Pa /etc/ssh/sshrc
907	Commands in this file are executed by	907	Commands in this file are executed by
908	.Nm	908	.Nm
909	when the user logs in just before the user's shell (or command) is started.	909	when the user logs in just before the user's shell (or command) is started.


diff --git a/sshd.8 b/sshd.8 index a5c3f9554..b19880f0e 100644 --- a/sshd.8 +++ b/sshd.8
@@ -9,7 +9,7 @@
9	.\"	9	.\"
10	.\" Created: Sat Apr 22 21:55:14 1995 ylo	10	.\" Created: Sat Apr 22 21:55:14 1995 ylo
11	.\"	11	.\"
12	.\" $Id: sshd.8,v 1.3 1999/10/28 23:15:50 damien Exp $	12	.\" $Id: sshd.8,v 1.4 1999/10/28 23:17:36 damien Exp $
13	.\"	13	.\"
14	.Dd September 25, 1999	14	.Dd September 25, 1999
15	.Dt SSHD 8	15	.Dt SSHD 8
@@ -118,7 +118,7 @@ not fork and will only process one connection. This option is only
118	intended for debugging for the server.	118	intended for debugging for the server.
119	.It Fl f Ar configuration_file	119	.It Fl f Ar configuration_file
120	Specifies the name of the configuration file. The default is	120	Specifies the name of the configuration file. The default is
121	.Pa /etc/sshd_config .	121	.Pa /etc/ssh/sshd_config .
122	.Nm	122	.Nm
123	refuses to start if there is no configuration file.	123	refuses to start if there is no configuration file.
124	.It Fl g Ar login_grace_time	124	.It Fl g Ar login_grace_time
@@ -128,7 +128,7 @@ this many seconds, the server disconnects and exits. A value of zero
128	indicates no limit.	128	indicates no limit.
129	.It Fl h Ar host_key_file	129	.It Fl h Ar host_key_file
130	Specifies the file from which the host key is read (default	130	Specifies the file from which the host key is read (default
131	.Pa /etc/ssh_host_key ) .	131	.Pa /etc/ssh/ssh_host_key ) .
132	This option must be given if	132	This option must be given if
133	.Nm	133	.Nm
134	is not run as root (as the normal	134	is not run as root (as the normal
@@ -165,7 +165,7 @@ Do not print an error message if RSA support is missing.
165	.Sh CONFIGURATION FILE	165	.Sh CONFIGURATION FILE
166	.Nm	166	.Nm
167	reads configuration data from	167	reads configuration data from
168	.Pa /etc/sshd_config	168	.Pa /etc/ssh/sshd_config
169	(or the file specified with	169	(or the file specified with
170	.Fl f	170	.Fl f
171	on the command line). The file	171	on the command line). The file
@@ -242,7 +242,7 @@ The default is
242	.Dq no .	242	.Dq no .
243	.It Cm HostKey	243	.It Cm HostKey
244	Specifies the file containing the private host key (default	244	Specifies the file containing the private host key (default
245	.Pa /etc/ssh_host_key ) .	245	.Pa /etc/ssh/ssh_host_key ) .
246	Note that	246	Note that
247	.Nm	247	.Nm
248	does not start if this file is group/world-accessible.	248	does not start if this file is group/world-accessible.
@@ -251,7 +251,7 @@ Specifies that rhosts and shosts files will not be used in
251	authentication.	251	authentication.
252	.Pa /etc/hosts.equiv	252	.Pa /etc/hosts.equiv
253	and	253	and
254	.Pa /etc/shosts.equiv	254	.Pa /etc/ssh/shosts.equiv
255	are still used. The default is	255	are still used. The default is
256	.Dq no .	256	.Dq no .
257	.It Cm KeepAlive	257	.It Cm KeepAlive
@@ -455,7 +455,7 @@ Changes to user's home directory.
455	If	455	If
456	.Pa $HOME/.ssh/rc	456	.Pa $HOME/.ssh/rc
457	exists, runs it; else if	457	exists, runs it; else if
458	.Pa /etc/sshrc	458	.Pa /etc/ssh/sshrc
459	exists, runs	459	exists, runs
460	it; otherwise runs xauth. The	460	it; otherwise runs xauth. The
461	.Dq rc	461	.Dq rc
@@ -541,7 +541,7 @@ from="*.niksula.hut.fi,!pc.niksula.hut.fi" 1024 35 23.\\|.\\|.\\|2334 ylo@niksula
541	command="dump /home",no-pty,no-port-forwarding 1024 33 23.\\|.\\|.\\|2323 backup.hut.fi	541	command="dump /home",no-pty,no-port-forwarding 1024 33 23.\\|.\\|.\\|2323 backup.hut.fi
542	.Sh SSH_KNOWN_HOSTS FILE FORMAT	542	.Sh SSH_KNOWN_HOSTS FILE FORMAT
543	The	543	The
544	.Pa /etc/ssh_known_hosts	544	.Pa /etc/ssh/ssh_known_hosts
545	and	545	and
546	.Pa $HOME/.ssh/known_hosts	546	.Pa $HOME/.ssh/known_hosts
547	files contain host public keys for all known hosts. The global file should	547	files contain host public keys for all known hosts. The global file should
@@ -564,7 +564,7 @@ pattern on the line.
564	.Pp	564	.Pp
565	Bits, exponent, and modulus are taken directly from the host key; they	565	Bits, exponent, and modulus are taken directly from the host key; they
566	can be obtained, e.g., from	566	can be obtained, e.g., from
567	.Pa /etc/ssh_host_key.pub .	567	.Pa /etc/ssh/ssh_host_key.pub .
568	The optional comment field continues to the end of the line, and is not used.	568	The optional comment field continues to the end of the line, and is not used.
569	.Pp	569	.Pp
570	Lines starting with	570	Lines starting with
@@ -583,25 +583,25 @@ Note that the lines in these files are typically hundreds of characters
583	long, and you definitely don't want to type in the host keys by hand.	583	long, and you definitely don't want to type in the host keys by hand.
584	Rather, generate them by a script	584	Rather, generate them by a script
585	or by taking	585	or by taking
586	.Pa /etc/ssh_host_key.pub	586	.Pa /etc/ssh/ssh_host_key.pub
587	and adding the host names at the front.	587	and adding the host names at the front.
588	.Ss Examples	588	.Ss Examples
589	closenet,closenet.hut.fi,.\\|.\\|.\\|,130.233.208.41 1024 37 159.\\|.\\|.93 closenet.hut.fi	589	closenet,closenet.hut.fi,.\\|.\\|.\\|,130.233.208.41 1024 37 159.\\|.\\|.93 closenet.hut.fi
590	.Sh FILES	590	.Sh FILES
591	.Bl -tag -width Ds	591	.Bl -tag -width Ds
592	.It Pa /etc/sshd_config	592	.It Pa /etc/ssh/sshd_config
593	Contains configuration data for	593	Contains configuration data for
594	.Nm sshd .	594	.Nm sshd .
595	This file should be writable by root only, but it is recommended	595	This file should be writable by root only, but it is recommended
596	(though not necessary) that it be world-readable.	596	(though not necessary) that it be world-readable.
597	.It Pa /etc/ssh_host_key	597	.It Pa /etc/ssh/ssh_host_key
598	Contains the private part of the host key.	598	Contains the private part of the host key.
599	This file should only be owned by root, readable only by root, and not	599	This file should only be owned by root, readable only by root, and not
600	accessible to others.	600	accessible to others.
601	Note that	601	Note that
602	.Nm	602	.Nm
603	does not start if this file is group/world-accessible.	603	does not start if this file is group/world-accessible.
604	.It Pa /etc/ssh_host_key.pub	604	.It Pa /etc/ssh/ssh_host_key.pub
605	Contains the public part of the host key.	605	Contains the public part of the host key.
606	This file should be world-readable but writable only by	606	This file should be world-readable but writable only by
607	root. Its contents should match the private part. This file is not	607	root. Its contents should match the private part. This file is not
@@ -622,17 +622,17 @@ This file must be readable by root (which may on some machines imply
622	it being world-readable if the user's home directory resides on an NFS	622	it being world-readable if the user's home directory resides on an NFS
623	volume). It is recommended that it not be accessible by others. The	623	volume). It is recommended that it not be accessible by others. The
624	format of this file is described above.	624	format of this file is described above.
625	.It Pa /etc/ssh_known_hosts	625	.It Pa /etc/ssh/ssh_known_hosts
626	This file is consulted when using rhosts with RSA host	626	This file is consulted when using rhosts with RSA host
627	authentication to check the public key of the host. The key must be	627	authentication to check the public key of the host. The key must be
628	listed in this file to be accepted.	628	listed in this file to be accepted.
629	.It Pa $HOME/.ssh/known_hosts	629	.It Pa $HOME/.ssh/known_hosts
630	The client uses this file	630	The client uses this file
631	and	631	and
632	.Pa /etc/ssh_known_hosts	632	.Pa /etc/ssh/ssh_known_hosts
633	to verify that the remote host is the one we intended to	633	to verify that the remote host is the one we intended to
634	connect. These files should be writable only by root/the owner.	634	connect. These files should be writable only by root/the owner.
635	.Pa /etc/ssh_known_hosts	635	.Pa /etc/ssh/ssh_known_hosts
636	should be world-readable, and	636	should be world-readable, and
637	.Pa $HOME/.ssh/known_hosts	637	.Pa $HOME/.ssh/known_hosts
638	can but need not be world-readable.	638	can but need not be world-readable.
@@ -694,7 +694,7 @@ user root access. The only valid use for user names that I can think
694	of is in negative entries.	694	of is in negative entries.
695	.Pp	695	.Pp
696	Note that this warning also applies to rsh/rlogin.	696	Note that this warning also applies to rsh/rlogin.
697	.It Pa /etc/shosts.equiv	697	.It Pa /etc/ssh/shosts.equiv
698	This is processed exactly as	698	This is processed exactly as
699	.Pa /etc/hosts.equiv .	699	.Pa /etc/hosts.equiv .
700	However, this file may be useful in environments that want to run both	700	However, this file may be useful in environments that want to run both
@@ -724,13 +724,13 @@ something similar to: "if read proto cookie; then echo add $DISPLAY
724	$proto $cookie \| xauth -q -; fi".	724	$proto $cookie \| xauth -q -; fi".
725	.Pp	725	.Pp
726	If this file does not exist,	726	If this file does not exist,
727	.Pa /etc/sshrc	727	.Pa /etc/ssh/sshrc
728	is run, and if that	728	is run, and if that
729	does not exist either, xauth is used to store the cookie.	729	does not exist either, xauth is used to store the cookie.
730	.Pp	730	.Pp
731	This file should be writable only by the user, and need not be	731	This file should be writable only by the user, and need not be
732	readable by anyone else.	732	readable by anyone else.
733	.It Pa /etc/sshrc	733	.It Pa /etc/ssh/sshrc
734	Like	734	Like
735	.Pa $HOME/.ssh/rc .	735	.Pa $HOME/.ssh/rc .
736	This can be used to specify	736	This can be used to specify