summaryrefslogtreecommitdiff
path: root/sshd_config.5
diff options
context:
space:
mode:
Diffstat (limited to 'sshd_config.5')
-rw-r--r--sshd_config.515
1 files changed, 13 insertions, 2 deletions
diff --git a/sshd_config.5 b/sshd_config.5
index e1b54ba20..c6484370b 100644
--- a/sshd_config.5
+++ b/sshd_config.5
@@ -33,8 +33,8 @@
33.\" (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF 33.\" (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF
34.\" THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. 34.\" THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
35.\" 35.\"
36.\" $OpenBSD: sshd_config.5,v 1.281 2018/07/20 05:01:10 djm Exp $ 36.\" $OpenBSD: sshd_config.5,v 1.282 2018/09/20 03:28:06 djm Exp $
37.Dd $Mdocdate: July 20 2018 $ 37.Dd $Mdocdate: September 20 2018 $
38.Dt SSHD_CONFIG 5 38.Dt SSHD_CONFIG 5
39.Os 39.Os
40.Sh NAME 40.Sh NAME
@@ -382,6 +382,17 @@ If the argument is
382.Cm none 382.Cm none
383then no banner is displayed. 383then no banner is displayed.
384By default, no banner is displayed. 384By default, no banner is displayed.
385.It Cm CASignatureAlgorithms
386Specifies which algorithms are allowed for signing of certificates
387by certificate authorities (CAs).
388The default is:
389.Bd -literal -offset indent
390ecdsa-sha2-nistp256.ecdsa-sha2-nistp384,ecdsa-sha2-nistp521,
391ssh-ed25519,rsa-sha2-512,rsa-sha2-256,ssh-rsa
392.Ed
393.Pp
394Certificates signed using other algorithms will not be accepted for
395public key or host-based authentication.
385.It Cm ChallengeResponseAuthentication 396.It Cm ChallengeResponseAuthentication
386Specifies whether challenge-response authentication is allowed (e.g. via 397Specifies whether challenge-response authentication is allowed (e.g. via
387PAM or through authentication styles supported in 398PAM or through authentication styles supported in