diff options
Diffstat (limited to 'sshd_config.0')
-rw-r--r-- | sshd_config.0 | 23 |
1 files changed, 12 insertions, 11 deletions
diff --git a/sshd_config.0 b/sshd_config.0 index 1d655a3b8..e75ed1b32 100644 --- a/sshd_config.0 +++ b/sshd_config.0 | |||
@@ -130,11 +130,10 @@ DESCRIPTION | |||
130 | target user is used. | 130 | target user is used. |
131 | 131 | ||
132 | The program should produce on standard output zero or more lines | 132 | The program should produce on standard output zero or more lines |
133 | of authorized_keys output (see AUTHORIZED_KEYS in sshd(8)). If a | 133 | of authorized_keys output (see AUTHORIZED_KEYS in sshd(8)). |
134 | key supplied by AuthorizedKeysCommand does not successfully | 134 | AuthorizedKeysCommand is tried after the usual AuthorizedKeysFile |
135 | authenticate and authorize the user then public key | 135 | files and will not be executed if a matching key is found there. |
136 | authentication continues using the usual AuthorizedKeysFile | 136 | By default, no AuthorizedKeysCommand is run. |
137 | files. By default, no AuthorizedKeysCommand is run. | ||
138 | 137 | ||
139 | AuthorizedKeysCommandUser | 138 | AuthorizedKeysCommandUser |
140 | Specifies the user under whose account the AuthorizedKeysCommand | 139 | Specifies the user under whose account the AuthorizedKeysCommand |
@@ -482,11 +481,13 @@ DESCRIPTION | |||
482 | -Q HostKeyAlgorithms". | 481 | -Q HostKeyAlgorithms". |
483 | 482 | ||
484 | IgnoreRhosts | 483 | IgnoreRhosts |
485 | Specifies that .rhosts and .shosts files will not be used in | 484 | Specifies whether to ignore per-user .rhosts and .shosts files |
486 | HostbasedAuthentication. | 485 | during HostbasedAuthentication. The system-wide /etc/hosts.equiv |
486 | and /etc/shosts.equiv are still used regardless of this setting. | ||
487 | 487 | ||
488 | /etc/hosts.equiv and /etc/shosts.equiv are still used. The | 488 | Accepted values are yes (the default) to ignore all per-user |
489 | default is yes. | 489 | files, shosts-only to allow the use of .shosts but to ignore |
490 | .rhosts or no to allow both .shosts and rhosts. | ||
490 | 491 | ||
491 | IgnoreUserKnownHosts | 492 | IgnoreUserKnownHosts |
492 | Specifies whether sshd(8) should ignore the user's | 493 | Specifies whether sshd(8) should ignore the user's |
@@ -687,7 +688,7 @@ DESCRIPTION | |||
687 | ClientAliveInterval, DenyGroups, DenyUsers, ForceCommand, | 688 | ClientAliveInterval, DenyGroups, DenyUsers, ForceCommand, |
688 | GatewayPorts, GSSAPIAuthentication, HostbasedAcceptedKeyTypes, | 689 | GatewayPorts, GSSAPIAuthentication, HostbasedAcceptedKeyTypes, |
689 | HostbasedAuthentication, HostbasedUsesNameFromPacketOnly, | 690 | HostbasedAuthentication, HostbasedUsesNameFromPacketOnly, |
690 | Include, IPQoS, KbdInteractiveAuthentication, | 691 | IgnoreRhosts, Include, IPQoS, KbdInteractiveAuthentication, |
691 | KerberosAuthentication, LogLevel, MaxAuthTries, MaxSessions, | 692 | KerberosAuthentication, LogLevel, MaxAuthTries, MaxSessions, |
692 | PasswordAuthentication, PermitEmptyPasswords, PermitListen, | 693 | PasswordAuthentication, PermitEmptyPasswords, PermitListen, |
693 | PermitOpen, PermitRootLogin, PermitTTY, PermitTunnel, | 694 | PermitOpen, PermitRootLogin, PermitTTY, PermitTunnel, |
@@ -1142,4 +1143,4 @@ AUTHORS | |||
1142 | versions 1.5 and 2.0. Niels Provos and Markus Friedl contributed support | 1143 | versions 1.5 and 2.0. Niels Provos and Markus Friedl contributed support |
1143 | for privilege separation. | 1144 | for privilege separation. |
1144 | 1145 | ||
1145 | OpenBSD 6.6 February 7, 2020 OpenBSD 6.6 | 1146 | OpenBSD 6.7 April 17, 2020 OpenBSD 6.7 |