1 files changed, 2 insertions, 24 deletions
diff --git a/sshd_config.5 b/sshd_config.5
index 454e46e0b..ac6ccc793 100644
--- a/sshd_config.5
+++ b/sshd_config.5
@@ -33,8 +33,8 @@
 .\" (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF
 .\" THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
 .\"
-.\" $OpenBSD: sshd_config.5,v 1.242 2017/02/03 23:01:19 djm Exp $
+.\" $OpenBSD: sshd_config.5,v 1.243 2017/03/14 07:19:07 djm Exp $
-.Dd $Mdocdate: February 3 2017 $
+.Dd $Mdocdate: March 14 2017 $
 .Dt SSHD_CONFIG 5
 .Os
 .Sh NAME
@@ -1494,28 +1494,6 @@ is enabled, you will not be able to run
 as a non-root user.
 The default is
 .Cm no .
-.It Cm UsePrivilegeSeparation
-Specifies whether
-.Xr sshd 8
-separates privileges by creating an unprivileged child process
-to deal with incoming network traffic.
-After successful authentication, another process will be created that has
-the privilege of the authenticated user.
-The goal of privilege separation is to prevent privilege
-escalation by containing any corruption within the unprivileged processes.
-The argument must be
-.Cm yes ,
-.Cm no ,
-or
-.Cm sandbox .
-If
-.Cm UsePrivilegeSeparation
-is set to
-.Cm sandbox
-then the pre-authentication unprivileged process is subject to additional
-restrictions.
-The default is
-.Cm sandbox .
 .It Cm VersionAddendum
 Optionally specifies additional text to append to the SSH protocol banner
 sent by the server upon connection.

diff --git a/sshd_config.5 b/sshd_config.5 index 454e46e0b..ac6ccc793 100644 --- a/sshd_config.5 +++ b/sshd_config.5
@@ -33,8 +33,8 @@
33	.\" (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF	33	.\" (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF
34	.\" THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.	34	.\" THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
35	.\"	35	.\"
36	.\" $OpenBSD: sshd_config.5,v 1.242 2017/02/03 23:01:19 djm Exp $	36	.\" $OpenBSD: sshd_config.5,v 1.243 2017/03/14 07:19:07 djm Exp $
37	.Dd $Mdocdate: February 3 2017 $	37	.Dd $Mdocdate: March 14 2017 $
38	.Dt SSHD_CONFIG 5	38	.Dt SSHD_CONFIG 5
39	.Os	39	.Os
40	.Sh NAME	40	.Sh NAME
@@ -1494,28 +1494,6 @@ is enabled, you will not be able to run
1494	as a non-root user.	1494	as a non-root user.
1495	The default is	1495	The default is
1496	.Cm no .	1496	.Cm no .
1497	.It Cm UsePrivilegeSeparation
1498	Specifies whether
1499	.Xr sshd 8
1500	separates privileges by creating an unprivileged child process
1501	to deal with incoming network traffic.
1502	After successful authentication, another process will be created that has
1503	the privilege of the authenticated user.
1504	The goal of privilege separation is to prevent privilege
1505	escalation by containing any corruption within the unprivileged processes.
1506	The argument must be
1507	.Cm yes ,
1508	.Cm no ,
1509	or
1510	.Cm sandbox .
1511	If
1512	.Cm UsePrivilegeSeparation
1513	is set to
1514	.Cm sandbox
1515	then the pre-authentication unprivileged process is subject to additional
1516	restrictions.
1517	The default is
1518	.Cm sandbox .
1519	.It Cm VersionAddendum	1497	.It Cm VersionAddendum
1520	Optionally specifies additional text to append to the SSH protocol banner	1498	Optionally specifies additional text to append to the SSH protocol banner
1521	sent by the server upon connection.	1499	sent by the server upon connection.