1 files changed, 43 insertions, 4 deletions
diff --git a/ssh_config.5 b/ssh_config.5
index b35753307..9c277a66f 100644
--- a/ssh_config.5
+++ b/ssh_config.5
@@ -127,8 +127,15 @@ Valid arguments are
 If set to
 .Dq yes ,
 passphrase/password querying will be disabled.
+In addition, the 
+.Cm ServerAliveInterval 
+and
+.Cm SetupTimeOut
+options will both be set to 300 seconds by default.
 This option is useful in scripts and other batch jobs where no user
-is present to supply the password.
+is present to supply the password,
+and where it is desirable to detect a
+broken network swiftly.
 The argument must be
 .Dq yes
 or
@@ -371,7 +378,8 @@ token used for the session will be set to expire after 20 minutes.
 Remote clients will be refused access after this time.
 .Pp
 The default is
-.Dq no .
+.Dq yes
+(Debian-specific).
 .Pp
 See the X11 SECURITY extension specification for full details on
 the restrictions imposed on untrusted clients.
@@ -710,8 +718,12 @@ from the server,
 will send a message through the encrypted
 channel to request a response from the server.
 The default
-is 0, indicating that these messages will not be sent to the server.
+is 0, indicating that these messages will not be sent to the server,
-This option applies to protocol version 2 only.
+or 300 if the
+.Cm BatchMode
+option is set.
+.Cm ProtocolKeepAlives
+is a Debian-specific compatibility alias for this option.
 .It Cm ServerAliveCountMax
 Sets the number of server alive messages (see above) which may be
 sent without
@@ -739,6 +751,27 @@ If, for example,
 .Cm ServerAliveCountMax
 is left at the default, if the server becomes unresponsive ssh
 will disconnect after approximately 45 seconds.
+This option works when using protocol version 2 only; in protocol version
+1 there is no mechanism to request a response from the server to the
+server alive messages, so disconnection is the responsibility of the TCP
+stack.
+.It Cm SetupTimeOut
+Normally,
+.Nm ssh
+blocks indefinitely whilst waiting to receive the ssh banner and other
+setup protocol from the server, during the session setup.
+This can cause
+.Nm ssh
+to hang under certain circumstances.
+If this option is set,
+.Nm ssh
+will give up if no data from the server is received for the specified
+number of seconds.
+The argument must be an integer.
+The default is 0 (disabled), or 300 if
+.Cm BatchMode
+is set.
+This is a Debian-specific option.
 .It Cm SmartcardDevice
 Specifies which smartcard device to use.
 The argument to this keyword is the device
@@ -786,6 +819,12 @@ Specifies whether the system should send TCP keepalive messages to the
 other side.
 If they are sent, death of the connection or crash of one
 of the machines will be properly noticed.
+This option only uses TCP keepalives (as opposed to using ssh level
+keepalives), so takes a long time to notice when the connection dies.
+As such, you probably want
+the
+.Cm ServerAliveInterval
+option as well.
 However, this means that
 connections will die if the route is down temporarily, and some people
 find it annoying.

diff --git a/ssh_config.5 b/ssh_config.5 index b35753307..9c277a66f 100644 --- a/ssh_config.5 +++ b/ssh_config.5
@@ -127,8 +127,15 @@ Valid arguments are
127	If set to	127	If set to
128	.Dq yes ,	128	.Dq yes ,
129	passphrase/password querying will be disabled.	129	passphrase/password querying will be disabled.
		130	In addition, the
		131	.Cm ServerAliveInterval
		132	and
		133	.Cm SetupTimeOut
		134	options will both be set to 300 seconds by default.
130	This option is useful in scripts and other batch jobs where no user	135	This option is useful in scripts and other batch jobs where no user
131	is present to supply the password.	136	is present to supply the password,
		137	and where it is desirable to detect a
		138	broken network swiftly.
132	The argument must be	139	The argument must be
133	.Dq yes	140	.Dq yes
134	or	141	or
@@ -371,7 +378,8 @@ token used for the session will be set to expire after 20 minutes.
371	Remote clients will be refused access after this time.	378	Remote clients will be refused access after this time.
372	.Pp	379	.Pp
373	The default is	380	The default is
374	.Dq no .	381	.Dq yes
		382	(Debian-specific).
375	.Pp	383	.Pp
376	See the X11 SECURITY extension specification for full details on	384	See the X11 SECURITY extension specification for full details on
377	the restrictions imposed on untrusted clients.	385	the restrictions imposed on untrusted clients.
@@ -710,8 +718,12 @@ from the server,
710	will send a message through the encrypted	718	will send a message through the encrypted
711	channel to request a response from the server.	719	channel to request a response from the server.
712	The default	720	The default
713	is 0, indicating that these messages will not be sent to the server.	721	is 0, indicating that these messages will not be sent to the server,
714	This option applies to protocol version 2 only.	722	or 300 if the
		723	.Cm BatchMode
		724	option is set.
		725	.Cm ProtocolKeepAlives
		726	is a Debian-specific compatibility alias for this option.
715	.It Cm ServerAliveCountMax	727	.It Cm ServerAliveCountMax
716	Sets the number of server alive messages (see above) which may be	728	Sets the number of server alive messages (see above) which may be
717	sent without	729	sent without
@@ -739,6 +751,27 @@ If, for example,
739	.Cm ServerAliveCountMax	751	.Cm ServerAliveCountMax
740	is left at the default, if the server becomes unresponsive ssh	752	is left at the default, if the server becomes unresponsive ssh
741	will disconnect after approximately 45 seconds.	753	will disconnect after approximately 45 seconds.
		754	This option works when using protocol version 2 only; in protocol version
		755	1 there is no mechanism to request a response from the server to the
		756	server alive messages, so disconnection is the responsibility of the TCP
		757	stack.
		758	.It Cm SetupTimeOut
		759	Normally,
		760	.Nm ssh
		761	blocks indefinitely whilst waiting to receive the ssh banner and other
		762	setup protocol from the server, during the session setup.
		763	This can cause
		764	.Nm ssh
		765	to hang under certain circumstances.
		766	If this option is set,
		767	.Nm ssh
		768	will give up if no data from the server is received for the specified
		769	number of seconds.
		770	The argument must be an integer.
		771	The default is 0 (disabled), or 300 if
		772	.Cm BatchMode
		773	is set.
		774	This is a Debian-specific option.
742	.It Cm SmartcardDevice	775	.It Cm SmartcardDevice
743	Specifies which smartcard device to use.	776	Specifies which smartcard device to use.
744	The argument to this keyword is the device	777	The argument to this keyword is the device
@@ -786,6 +819,12 @@ Specifies whether the system should send TCP keepalive messages to the
786	other side.	819	other side.
787	If they are sent, death of the connection or crash of one	820	If they are sent, death of the connection or crash of one
788	of the machines will be properly noticed.	821	of the machines will be properly noticed.
		822	This option only uses TCP keepalives (as opposed to using ssh level
		823	keepalives), so takes a long time to notice when the connection dies.
		824	As such, you probably want
		825	the
		826	.Cm ServerAliveInterval
		827	option as well.
789	However, this means that	828	However, this means that
790	connections will die if the route is down temporarily, and some people	829	connections will die if the route is down temporarily, and some people
791	find it annoying.	830	find it annoying.