diff options
Diffstat (limited to 'ssh_config.5')
-rw-r--r-- | ssh_config.5 | 47 |
1 files changed, 43 insertions, 4 deletions
diff --git a/ssh_config.5 b/ssh_config.5 index b35753307..9c277a66f 100644 --- a/ssh_config.5 +++ b/ssh_config.5 | |||
@@ -127,8 +127,15 @@ Valid arguments are | |||
127 | If set to | 127 | If set to |
128 | .Dq yes , | 128 | .Dq yes , |
129 | passphrase/password querying will be disabled. | 129 | passphrase/password querying will be disabled. |
130 | In addition, the | ||
131 | .Cm ServerAliveInterval | ||
132 | and | ||
133 | .Cm SetupTimeOut | ||
134 | options will both be set to 300 seconds by default. | ||
130 | This option is useful in scripts and other batch jobs where no user | 135 | This option is useful in scripts and other batch jobs where no user |
131 | is present to supply the password. | 136 | is present to supply the password, |
137 | and where it is desirable to detect a | ||
138 | broken network swiftly. | ||
132 | The argument must be | 139 | The argument must be |
133 | .Dq yes | 140 | .Dq yes |
134 | or | 141 | or |
@@ -371,7 +378,8 @@ token used for the session will be set to expire after 20 minutes. | |||
371 | Remote clients will be refused access after this time. | 378 | Remote clients will be refused access after this time. |
372 | .Pp | 379 | .Pp |
373 | The default is | 380 | The default is |
374 | .Dq no . | 381 | .Dq yes |
382 | (Debian-specific). | ||
375 | .Pp | 383 | .Pp |
376 | See the X11 SECURITY extension specification for full details on | 384 | See the X11 SECURITY extension specification for full details on |
377 | the restrictions imposed on untrusted clients. | 385 | the restrictions imposed on untrusted clients. |
@@ -710,8 +718,12 @@ from the server, | |||
710 | will send a message through the encrypted | 718 | will send a message through the encrypted |
711 | channel to request a response from the server. | 719 | channel to request a response from the server. |
712 | The default | 720 | The default |
713 | is 0, indicating that these messages will not be sent to the server. | 721 | is 0, indicating that these messages will not be sent to the server, |
714 | This option applies to protocol version 2 only. | 722 | or 300 if the |
723 | .Cm BatchMode | ||
724 | option is set. | ||
725 | .Cm ProtocolKeepAlives | ||
726 | is a Debian-specific compatibility alias for this option. | ||
715 | .It Cm ServerAliveCountMax | 727 | .It Cm ServerAliveCountMax |
716 | Sets the number of server alive messages (see above) which may be | 728 | Sets the number of server alive messages (see above) which may be |
717 | sent without | 729 | sent without |
@@ -739,6 +751,27 @@ If, for example, | |||
739 | .Cm ServerAliveCountMax | 751 | .Cm ServerAliveCountMax |
740 | is left at the default, if the server becomes unresponsive ssh | 752 | is left at the default, if the server becomes unresponsive ssh |
741 | will disconnect after approximately 45 seconds. | 753 | will disconnect after approximately 45 seconds. |
754 | This option works when using protocol version 2 only; in protocol version | ||
755 | 1 there is no mechanism to request a response from the server to the | ||
756 | server alive messages, so disconnection is the responsibility of the TCP | ||
757 | stack. | ||
758 | .It Cm SetupTimeOut | ||
759 | Normally, | ||
760 | .Nm ssh | ||
761 | blocks indefinitely whilst waiting to receive the ssh banner and other | ||
762 | setup protocol from the server, during the session setup. | ||
763 | This can cause | ||
764 | .Nm ssh | ||
765 | to hang under certain circumstances. | ||
766 | If this option is set, | ||
767 | .Nm ssh | ||
768 | will give up if no data from the server is received for the specified | ||
769 | number of seconds. | ||
770 | The argument must be an integer. | ||
771 | The default is 0 (disabled), or 300 if | ||
772 | .Cm BatchMode | ||
773 | is set. | ||
774 | This is a Debian-specific option. | ||
742 | .It Cm SmartcardDevice | 775 | .It Cm SmartcardDevice |
743 | Specifies which smartcard device to use. | 776 | Specifies which smartcard device to use. |
744 | The argument to this keyword is the device | 777 | The argument to this keyword is the device |
@@ -786,6 +819,12 @@ Specifies whether the system should send TCP keepalive messages to the | |||
786 | other side. | 819 | other side. |
787 | If they are sent, death of the connection or crash of one | 820 | If they are sent, death of the connection or crash of one |
788 | of the machines will be properly noticed. | 821 | of the machines will be properly noticed. |
822 | This option only uses TCP keepalives (as opposed to using ssh level | ||
823 | keepalives), so takes a long time to notice when the connection dies. | ||
824 | As such, you probably want | ||
825 | the | ||
826 | .Cm ServerAliveInterval | ||
827 | option as well. | ||
789 | However, this means that | 828 | However, this means that |
790 | connections will die if the route is down temporarily, and some people | 829 | connections will die if the route is down temporarily, and some people |
791 | find it annoying. | 830 | find it annoying. |