1 files changed, 42 insertions, 4 deletions
diff --git a/ssh_config.5 b/ssh_config.5
index 06db04c27..e41b34b15 100644
--- a/ssh_config.5
+++ b/ssh_config.5
@@ -127,8 +127,15 @@ Valid arguments are
 If set to
 .Dq yes ,
 passphrase/password querying will be disabled.
+In addition, the 
+.Cm ServerAliveInterval 
+and
+.Cm SetupTimeOut
+options will both be set to 300 seconds by default.
 This option is useful in scripts and other batch jobs where no user
-is present to supply the password.
+is present to supply the password,
+and where it is desirable to detect a
+broken network swiftly.
 The argument must be
 .Dq yes
 or
@@ -371,7 +378,8 @@ token used for the session will be set to expire after 20 minutes.
 Remote clients will be refused access after this time.
 .Pp
 The default is
-.Dq no .
+.Dq yes
+(Debian-specific).
 .Pp
 See the X11 SECURITY extension specification for full details on
 the restrictions imposed on untrusted clients.
@@ -718,8 +726,12 @@ from the server,
 will send a message through the encrypted
 channel to request a response from the server.
 The default
-is 0, indicating that these messages will not be sent to the server.
+is 0, indicating that these messages will not be sent to the server,
-This option applies to protocol version 2 only.
+or 300 if the
+.Cm BatchMode
+option is set.
+.Cm ProtocolKeepAlives
+is a Debian-specific compatibility alias for this option.
 .It Cm ServerAliveCountMax
 Sets the number of server alive messages (see above) which may be
 sent without
@@ -747,6 +759,26 @@ If, for example,
 .Cm ServerAliveCountMax
 is left at the default, if the server becomes unresponsive ssh
 will disconnect after approximately 45 seconds.
+This option works when using protocol version 2 only; in protocol version
+1 there is no mechanism to request a response from the server to the
+server alive messages, so disconnection is the responsibility of the TCP
+stack.
+.It Cm SetupTimeOut
+Normally,
+.Nm ssh
+blocks indefinitely whilst waiting to receive the ssh banner and other
+setup protocol from the server, during the session setup.
+This can cause
+.Nm ssh
+to hang under certain circumstances.
+If this option is set,
+.Nm ssh
+will give up if no data from the server is received for the specified
+number of seconds.
+The argument must be an integer.
+The default is 0 (disabled), or 300 if
+.Cm BatchMode
+is set.
 .It Cm SmartcardDevice
 Specifies which smartcard device to use.
 The argument to this keyword is the device
@@ -794,6 +826,12 @@ Specifies whether the system should send TCP keepalive messages to the
 other side.
 If they are sent, death of the connection or crash of one
 of the machines will be properly noticed.
+This option only uses TCP keepalives (as opposed to using ssh level
+keepalives), so takes a long time to notice when the connection dies.
+As such, you probably want
+the
+.Cm ServerAliveInterval
+option as well.
 However, this means that
 connections will die if the route is down temporarily, and some people
 find it annoying.

diff --git a/ssh_config.5 b/ssh_config.5 index 06db04c27..e41b34b15 100644 --- a/ssh_config.5 +++ b/ssh_config.5
@@ -127,8 +127,15 @@ Valid arguments are
127	If set to	127	If set to
128	.Dq yes ,	128	.Dq yes ,
129	passphrase/password querying will be disabled.	129	passphrase/password querying will be disabled.
		130	In addition, the
		131	.Cm ServerAliveInterval
		132	and
		133	.Cm SetupTimeOut
		134	options will both be set to 300 seconds by default.
130	This option is useful in scripts and other batch jobs where no user	135	This option is useful in scripts and other batch jobs where no user
131	is present to supply the password.	136	is present to supply the password,
		137	and where it is desirable to detect a
		138	broken network swiftly.
132	The argument must be	139	The argument must be
133	.Dq yes	140	.Dq yes
134	or	141	or
@@ -371,7 +378,8 @@ token used for the session will be set to expire after 20 minutes.
371	Remote clients will be refused access after this time.	378	Remote clients will be refused access after this time.
372	.Pp	379	.Pp
373	The default is	380	The default is
374	.Dq no .	381	.Dq yes
		382	(Debian-specific).
375	.Pp	383	.Pp
376	See the X11 SECURITY extension specification for full details on	384	See the X11 SECURITY extension specification for full details on
377	the restrictions imposed on untrusted clients.	385	the restrictions imposed on untrusted clients.
@@ -718,8 +726,12 @@ from the server,
718	will send a message through the encrypted	726	will send a message through the encrypted
719	channel to request a response from the server.	727	channel to request a response from the server.
720	The default	728	The default
721	is 0, indicating that these messages will not be sent to the server.	729	is 0, indicating that these messages will not be sent to the server,
722	This option applies to protocol version 2 only.	730	or 300 if the
		731	.Cm BatchMode
		732	option is set.
		733	.Cm ProtocolKeepAlives
		734	is a Debian-specific compatibility alias for this option.
723	.It Cm ServerAliveCountMax	735	.It Cm ServerAliveCountMax
724	Sets the number of server alive messages (see above) which may be	736	Sets the number of server alive messages (see above) which may be
725	sent without	737	sent without
@@ -747,6 +759,26 @@ If, for example,
747	.Cm ServerAliveCountMax	759	.Cm ServerAliveCountMax
748	is left at the default, if the server becomes unresponsive ssh	760	is left at the default, if the server becomes unresponsive ssh
749	will disconnect after approximately 45 seconds.	761	will disconnect after approximately 45 seconds.
		762	This option works when using protocol version 2 only; in protocol version
		763	1 there is no mechanism to request a response from the server to the
		764	server alive messages, so disconnection is the responsibility of the TCP
		765	stack.
		766	.It Cm SetupTimeOut
		767	Normally,
		768	.Nm ssh
		769	blocks indefinitely whilst waiting to receive the ssh banner and other
		770	setup protocol from the server, during the session setup.
		771	This can cause
		772	.Nm ssh
		773	to hang under certain circumstances.
		774	If this option is set,
		775	.Nm ssh
		776	will give up if no data from the server is received for the specified
		777	number of seconds.
		778	The argument must be an integer.
		779	The default is 0 (disabled), or 300 if
		780	.Cm BatchMode
		781	is set.
750	.It Cm SmartcardDevice	782	.It Cm SmartcardDevice
751	Specifies which smartcard device to use.	783	Specifies which smartcard device to use.
752	The argument to this keyword is the device	784	The argument to this keyword is the device
@@ -794,6 +826,12 @@ Specifies whether the system should send TCP keepalive messages to the
794	other side.	826	other side.
795	If they are sent, death of the connection or crash of one	827	If they are sent, death of the connection or crash of one
796	of the machines will be properly noticed.	828	of the machines will be properly noticed.
		829	This option only uses TCP keepalives (as opposed to using ssh level
		830	keepalives), so takes a long time to notice when the connection dies.
		831	As such, you probably want
		832	the
		833	.Cm ServerAliveInterval
		834	option as well.
797	However, this means that	835	However, this means that
798	connections will die if the route is down temporarily, and some people	836	connections will die if the route is down temporarily, and some people
799	find it annoying.	837	find it annoying.