diff options
Diffstat (limited to 'ssh_config.0')
| -rw-r--r-- | ssh_config.0 | 52 |
1 files changed, 35 insertions, 17 deletions
diff --git a/ssh_config.0 b/ssh_config.0 index 381c1ba0a..e2e645854 100644 --- a/ssh_config.0 +++ b/ssh_config.0 | |||
| @@ -40,10 +40,12 @@ DESCRIPTION | |||
| 40 | 40 | ||
| 41 | Host Restricts the following declarations (up to the next Host key- | 41 | Host Restricts the following declarations (up to the next Host key- |
| 42 | word) to be only for those hosts that match one of the patterns | 42 | word) to be only for those hosts that match one of the patterns |
| 43 | given after the keyword. A single `*' as a pattern can be used | 43 | given after the keyword. If more than one pattern is provided, |
| 44 | to provide global defaults for all hosts. The host is the | 44 | they should be separated by whitepsace. A single `*' as a pat- |
| 45 | hostname argument given on the command line (i.e. the name is not | 45 | tern can be used to provide global defaults for all hosts. The |
| 46 | converted to a canonicalized host name before matching). | 46 | host is the hostname argument given on the command line (i.e. the |
| 47 | name is not converted to a canonicalized host name before match- | ||
| 48 | ing). | ||
| 47 | 49 | ||
| 48 | See PATTERNS for more information on patterns. | 50 | See PATTERNS for more information on patterns. |
| 49 | 51 | ||
| @@ -324,6 +326,11 @@ DESCRIPTION | |||
| 324 | It is possible to have multiple identity files specified in con- | 326 | It is possible to have multiple identity files specified in con- |
| 325 | figuration files; all these identities will be tried in sequence. | 327 | figuration files; all these identities will be tried in sequence. |
| 326 | 328 | ||
| 329 | KbdInteractiveAuthentication | ||
| 330 | Specifies whether to use keyboard-interactive authentication. | ||
| 331 | The argument to this keyword must be ``yes'' or ``no''. The de- | ||
| 332 | fault is ``yes''. | ||
| 333 | |||
| 327 | KbdInteractiveDevices | 334 | KbdInteractiveDevices |
| 328 | Specifies the list of methods to use in keyboard-interactive au- | 335 | Specifies the list of methods to use in keyboard-interactive au- |
| 329 | thentication. Multiple method names must be comma-separated. | 336 | thentication. Multiple method names must be comma-separated. |
| @@ -335,8 +342,13 @@ DESCRIPTION | |||
| 335 | LocalCommand | 342 | LocalCommand |
| 336 | Specifies a command to execute on the local machine after suc- | 343 | Specifies a command to execute on the local machine after suc- |
| 337 | cessfully connecting to the server. The command string extends | 344 | cessfully connecting to the server. The command string extends |
| 338 | to the end of the line, and is executed with /bin/sh. This di- | 345 | to the end of the line, and is executed with the user's shell. |
| 339 | rective is ignored unless PermitLocalCommand has been enabled. | 346 | The following escape character substitutions will be performed: |
| 347 | `%d' (local user's home directory), `%h' (remote host name), `%l' | ||
| 348 | (local host name), `%n' (host name as provided on the command | ||
| 349 | line), `%p' (remote port), `%r' (remote user name) or `%u' (local | ||
| 350 | user name). This directive is ignored unless PermitLocalCommand | ||
| 351 | has been enabled. | ||
| 340 | 352 | ||
| 341 | LocalForward | 353 | LocalForward |
| 342 | Specifies that a TCP port on the local machine be forwarded over | 354 | Specifies that a TCP port on the local machine be forwarded over |
| @@ -413,16 +425,16 @@ DESCRIPTION | |||
| 413 | ProxyCommand | 425 | ProxyCommand |
| 414 | Specifies the command to use to connect to the server. The com- | 426 | Specifies the command to use to connect to the server. The com- |
| 415 | mand string extends to the end of the line, and is executed with | 427 | mand string extends to the end of the line, and is executed with |
| 416 | /bin/sh. In the command string, `%h' will be substituted by the | 428 | the user's shell. In the command string, `%h' will be substitut- |
| 417 | host name to connect and `%p' by the port. The command can be | 429 | ed by the host name to connect and `%p' by the port. The command |
| 418 | basically anything, and should read from its standard input and | 430 | can be basically anything, and should read from its standard in- |
| 419 | write to its standard output. It should eventually connect an | 431 | put and write to its standard output. It should eventually con- |
| 420 | sshd(8) server running on some machine, or execute sshd -i some- | 432 | nect an sshd(8) server running on some machine, or execute sshd |
| 421 | where. Host key management will be done using the HostName of | 433 | -i somewhere. Host key management will be done using the Host- |
| 422 | the host being connected (defaulting to the name typed by the us- | 434 | Name of the host being connected (defaulting to the name typed by |
| 423 | er). Setting the command to ``none'' disables this option en- | 435 | the user). Setting the command to ``none'' disables this option |
| 424 | tirely. Note that CheckHostIP is not available for connects with | 436 | entirely. Note that CheckHostIP is not available for connects |
| 425 | a proxy command. | 437 | with a proxy command. |
| 426 | 438 | ||
| 427 | This directive is useful in conjunction with nc(1) and its proxy | 439 | This directive is useful in conjunction with nc(1) and its proxy |
| 428 | support. For example, the following directive would connect via | 440 | support. For example, the following directive would connect via |
| @@ -595,6 +607,12 @@ DESCRIPTION | |||
| 595 | 607 | ||
| 596 | See also VERIFYING HOST KEYS in ssh(1). | 608 | See also VERIFYING HOST KEYS in ssh(1). |
| 597 | 609 | ||
| 610 | VisualHostKey | ||
| 611 | If this flag is set to ``yes'', an ASCII art representation of | ||
| 612 | the remote host key fingerprint is printed additionally to the | ||
| 613 | hex fingerprint string. If this flag is set to ``no'', only the | ||
| 614 | hex fingerprint string will be printed. The default is ``no''. | ||
| 615 | |||
| 598 | XAuthLocation | 616 | XAuthLocation |
| 599 | Specifies the full pathname of the xauth(1) program. The default | 617 | Specifies the full pathname of the xauth(1) program. The default |
| 600 | is /usr/X11R6/bin/xauth. | 618 | is /usr/X11R6/bin/xauth. |
| @@ -644,4 +662,4 @@ AUTHORS | |||
| 644 | ated OpenSSH. Markus Friedl contributed the support for SSH protocol | 662 | ated OpenSSH. Markus Friedl contributed the support for SSH protocol |
| 645 | versions 1.5 and 2.0. | 663 | versions 1.5 and 2.0. |
| 646 | 664 | ||
| 647 | OpenBSD 4.2 August 15, 2007 10 | 665 | OpenBSD 4.4 June 26, 2008 11 |