diff options
Diffstat (limited to 'sshd_config.5')
-rw-r--r-- | sshd_config.5 | 15 |
1 files changed, 13 insertions, 2 deletions
diff --git a/sshd_config.5 b/sshd_config.5 index e1b54ba20..c6484370b 100644 --- a/sshd_config.5 +++ b/sshd_config.5 | |||
@@ -33,8 +33,8 @@ | |||
33 | .\" (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF | 33 | .\" (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF |
34 | .\" THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. | 34 | .\" THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. |
35 | .\" | 35 | .\" |
36 | .\" $OpenBSD: sshd_config.5,v 1.281 2018/07/20 05:01:10 djm Exp $ | 36 | .\" $OpenBSD: sshd_config.5,v 1.282 2018/09/20 03:28:06 djm Exp $ |
37 | .Dd $Mdocdate: July 20 2018 $ | 37 | .Dd $Mdocdate: September 20 2018 $ |
38 | .Dt SSHD_CONFIG 5 | 38 | .Dt SSHD_CONFIG 5 |
39 | .Os | 39 | .Os |
40 | .Sh NAME | 40 | .Sh NAME |
@@ -382,6 +382,17 @@ If the argument is | |||
382 | .Cm none | 382 | .Cm none |
383 | then no banner is displayed. | 383 | then no banner is displayed. |
384 | By default, no banner is displayed. | 384 | By default, no banner is displayed. |
385 | .It Cm CASignatureAlgorithms | ||
386 | Specifies which algorithms are allowed for signing of certificates | ||
387 | by certificate authorities (CAs). | ||
388 | The default is: | ||
389 | .Bd -literal -offset indent | ||
390 | ecdsa-sha2-nistp256.ecdsa-sha2-nistp384,ecdsa-sha2-nistp521, | ||
391 | ssh-ed25519,rsa-sha2-512,rsa-sha2-256,ssh-rsa | ||
392 | .Ed | ||
393 | .Pp | ||
394 | Certificates signed using other algorithms will not be accepted for | ||
395 | public key or host-based authentication. | ||
385 | .It Cm ChallengeResponseAuthentication | 396 | .It Cm ChallengeResponseAuthentication |
386 | Specifies whether challenge-response authentication is allowed (e.g. via | 397 | Specifies whether challenge-response authentication is allowed (e.g. via |
387 | PAM or through authentication styles supported in | 398 | PAM or through authentication styles supported in |