diff options
Diffstat (limited to 'sshd.8')
-rw-r--r-- | sshd.8 | 37 |
1 files changed, 18 insertions, 19 deletions
@@ -9,7 +9,7 @@ | |||
9 | .\" | 9 | .\" |
10 | .\" Created: Sat Apr 22 21:55:14 1995 ylo | 10 | .\" Created: Sat Apr 22 21:55:14 1995 ylo |
11 | .\" | 11 | .\" |
12 | .\" $Id: sshd.8,v 1.12 2000/01/22 08:57:41 damien Exp $ | 12 | .\" $Id: sshd.8,v 1.13 2000/03/09 10:27:53 damien Exp $ |
13 | .\" | 13 | .\" |
14 | .Dd September 25, 1999 | 14 | .Dd September 25, 1999 |
15 | .Dt SSHD 8 | 15 | .Dt SSHD 8 |
@@ -258,13 +258,16 @@ Note that | |||
258 | .Nm | 258 | .Nm |
259 | does not start if this file is group/world-accessible. | 259 | does not start if this file is group/world-accessible. |
260 | .It Cm IgnoreRhosts | 260 | .It Cm IgnoreRhosts |
261 | Specifies that rhosts and shosts files will not be used in | 261 | Specifies that |
262 | authentication. | 262 | .Pa .rhosts |
263 | and | ||
264 | .Pa .shosts | ||
265 | files will not be used in authentication. | ||
263 | .Pa /etc/hosts.equiv | 266 | .Pa /etc/hosts.equiv |
264 | and | 267 | and |
265 | .Pa /etc/shosts.equiv | 268 | .Pa /etc/shosts.equiv |
266 | are still used. The default is | 269 | are still used. The default is |
267 | .Dq no . | 270 | .Dq yes . |
268 | .It Cm IgnoreUserKnownHosts | 271 | .It Cm IgnoreUserKnownHosts |
269 | Specifies whether | 272 | Specifies whether |
270 | .Nm | 273 | .Nm |
@@ -352,7 +355,7 @@ The default is | |||
352 | When password authentication is allowed, it specifies whether the | 355 | When password authentication is allowed, it specifies whether the |
353 | server allows login to accounts with empty password strings. The default | 356 | server allows login to accounts with empty password strings. The default |
354 | is | 357 | is |
355 | .Dq yes . | 358 | .Dq no . |
356 | .It Cm PermitRootLogin | 359 | .It Cm PermitRootLogin |
357 | Specifies whether the root can log in using | 360 | Specifies whether the root can log in using |
358 | .Xr ssh 1 . | 361 | .Xr ssh 1 . |
@@ -403,7 +406,7 @@ The default is | |||
403 | .It Cm RhostsRSAAuthentication | 406 | .It Cm RhostsRSAAuthentication |
404 | Specifies whether rhosts or /etc/hosts.equiv authentication together | 407 | Specifies whether rhosts or /etc/hosts.equiv authentication together |
405 | with successful RSA host authentication is allowed. The default is | 408 | with successful RSA host authentication is allowed. The default is |
406 | .Dq yes . | 409 | .Dq no . |
407 | .It Cm RSAAuthentication | 410 | .It Cm RSAAuthentication |
408 | Specifies whether pure RSA authentication is allowed. The default is | 411 | Specifies whether pure RSA authentication is allowed. The default is |
409 | .Dq yes . | 412 | .Dq yes . |
@@ -442,9 +445,10 @@ Specifies the first display number available for | |||
442 | X11 forwarding. This prevents | 445 | X11 forwarding. This prevents |
443 | .Nm | 446 | .Nm |
444 | from interfering with real X11 servers. | 447 | from interfering with real X11 servers. |
448 | The default is 10. | ||
445 | .It Cm X11Forwarding | 449 | .It Cm X11Forwarding |
446 | Specifies whether X11 forwarding is permitted. The default is | 450 | Specifies whether X11 forwarding is permitted. The default is |
447 | .Dq yes . | 451 | .Dq no . |
448 | Note that disabling X11 forwarding does not improve security in any | 452 | Note that disabling X11 forwarding does not improve security in any |
449 | way, as users can always install their own forwarders. | 453 | way, as users can always install their own forwarders. |
450 | .El | 454 | .El |
@@ -762,18 +766,12 @@ This can be used to specify | |||
762 | machine-specific login-time initializations globally. This file | 766 | machine-specific login-time initializations globally. This file |
763 | should be writable only by root, and should be world-readable. | 767 | should be writable only by root, and should be world-readable. |
764 | .Sh AUTHOR | 768 | .Sh AUTHOR |
765 | Tatu Ylonen <ylo@cs.hut.fi> | ||
766 | .Pp | ||
767 | Information about new releases, mailing lists, and other related | ||
768 | issues can be found from the SSH WWW home page: | ||
769 | .Pp | ||
770 | .Dl http://www.cs.hut.fi/ssh. | ||
771 | .Pp | ||
772 | OpenSSH | 769 | OpenSSH |
773 | is a derivative of the original (free) ssh 1.2.12 release, but with bugs | 770 | is a derivative of the original (free) ssh 1.2.12 release by Tatu Ylonen, |
774 | removed and newer features re-added. Rapidly after the 1.2.12 release, | 771 | but with bugs removed and newer features re-added. Rapidly after the |
775 | newer versions bore successively more restrictive licenses. This version | 772 | 1.2.12 release, newer versions of the original ssh bore successively |
776 | of OpenSSH | 773 | more restrictive licenses, and thus demand for a free version was born. |
774 | This version of OpenSSH | ||
777 | .Bl -bullet | 775 | .Bl -bullet |
778 | .It | 776 | .It |
779 | has all components of a restrictive nature (i.e., patents, see | 777 | has all components of a restrictive nature (i.e., patents, see |
@@ -782,7 +780,8 @@ directly removed from the source code; any licensed or patented components | |||
782 | are chosen from | 780 | are chosen from |
783 | external libraries. | 781 | external libraries. |
784 | .It | 782 | .It |
785 | has been updated to support ssh protocol 1.5. | 783 | has been updated to support ssh protocol 1.5, making it compatible with |
784 | all other ssh protocol 1 clients and servers. | ||
786 | .It | 785 | .It |
787 | contains added support for | 786 | contains added support for |
788 | .Xr kerberos 8 | 787 | .Xr kerberos 8 |