diff options
Diffstat (limited to 'sshd.8')
-rw-r--r-- | sshd.8 | 20 |
1 files changed, 4 insertions, 16 deletions
@@ -34,7 +34,7 @@ | |||
34 | .\" (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF | 34 | .\" (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF |
35 | .\" THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. | 35 | .\" THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. |
36 | .\" | 36 | .\" |
37 | .\" $OpenBSD: sshd.8,v 1.130 2001/06/22 21:55:50 markus Exp $ | 37 | .\" $OpenBSD: sshd.8,v 1.131 2001/06/23 02:34:33 markus Exp $ |
38 | .Dd September 25, 1999 | 38 | .Dd September 25, 1999 |
39 | .Dt SSHD 8 | 39 | .Dt SSHD 8 |
40 | .Os | 40 | .Os |
@@ -1025,10 +1025,8 @@ permitopen="10.2.1.55:80",permitopen="10.2.1.56:25" 1024 33 23.\|.\|.\|2323 | |||
1025 | .Sh SSH_KNOWN_HOSTS FILE FORMAT | 1025 | .Sh SSH_KNOWN_HOSTS FILE FORMAT |
1026 | The | 1026 | The |
1027 | .Pa /etc/ssh_known_hosts , | 1027 | .Pa /etc/ssh_known_hosts , |
1028 | .Pa /etc/ssh_known_hosts2 , | ||
1029 | .Pa $HOME/.ssh/known_hosts , | ||
1030 | and | 1028 | and |
1031 | .Pa $HOME/.ssh/known_hosts2 | 1029 | .Pa $HOME/.ssh/known_hosts |
1032 | files contain host public keys for all known hosts. | 1030 | files contain host public keys for all known hosts. |
1033 | The global file should | 1031 | The global file should |
1034 | be prepared by the administrator (optional), and the per-user file is | 1032 | be prepared by the administrator (optional), and the per-user file is |
@@ -1129,7 +1127,8 @@ files into this file, as described in | |||
1129 | .Xr ssh-keygen 1 . | 1127 | .Xr ssh-keygen 1 . |
1130 | .It Pa "/etc/ssh_known_hosts" and "$HOME/.ssh/known_hosts" | 1128 | .It Pa "/etc/ssh_known_hosts" and "$HOME/.ssh/known_hosts" |
1131 | These files are consulted when using rhosts with RSA host | 1129 | These files are consulted when using rhosts with RSA host |
1132 | authentication to check the public key of the host. | 1130 | authentication or protocol version 2 hostbased authentication |
1131 | to check the public key of the host. | ||
1133 | The key must be listed in one of these files to be accepted. | 1132 | The key must be listed in one of these files to be accepted. |
1134 | The client uses the same files | 1133 | The client uses the same files |
1135 | to verify that it is connecting to the correct remote host. | 1134 | to verify that it is connecting to the correct remote host. |
@@ -1138,17 +1137,6 @@ These files should be writable only by root/the owner. | |||
1138 | should be world-readable, and | 1137 | should be world-readable, and |
1139 | .Pa $HOME/.ssh/known_hosts | 1138 | .Pa $HOME/.ssh/known_hosts |
1140 | can but need not be world-readable. | 1139 | can but need not be world-readable. |
1141 | .It Pa "/etc/ssh_known_hosts2" and "$HOME/.ssh/known_hosts2" | ||
1142 | These files are consulted when using protocol version 2 hostbased | ||
1143 | authentication to check the public key of the host. | ||
1144 | The key must be listed in one of these files to be accepted. | ||
1145 | The client uses the same files | ||
1146 | to verify that it is connecting to the correct remote host. | ||
1147 | These files should be writable only by root/the owner. | ||
1148 | .Pa /etc/ssh_known_hosts2 | ||
1149 | should be world-readable, and | ||
1150 | .Pa $HOME/.ssh/known_hosts2 | ||
1151 | can but need not be world-readable. | ||
1152 | .It Pa /etc/nologin | 1140 | .It Pa /etc/nologin |
1153 | If this file exists, | 1141 | If this file exists, |
1154 | .Nm | 1142 | .Nm |