1 files changed, 21 insertions, 16 deletions
diff --git a/sshd_config.5 b/sshd_config.5
index ea79a54bf..048e8924e 100644
--- a/sshd_config.5
+++ b/sshd_config.5
@@ -34,7 +34,7 @@
 .\" (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF
 .\" THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
 .\"
-.\" $OpenBSD: sshd_config.5,v 1.40 2005/03/18 17:05:00 jmc Exp $
+.\" $OpenBSD: sshd_config.5,v 1.44 2005/07/25 11:59:40 markus Exp $
 .Dd September 25, 1999
 .Dt SSHD_CONFIG 5
 .Os
@@ -168,24 +168,18 @@ The supported ciphers are
 .Dq aes128-ctr ,
 .Dq aes192-ctr ,
 .Dq aes256-ctr ,
+.Dq arcfour128 ,
+.Dq arcfour256 ,
 .Dq arcfour ,
 .Dq blowfish-cbc ,
 and
 .Dq cast128-cbc .
 The default is
 .Bd -literal
-  ``aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,arcfour,
+  ``aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,arcfour128,
-    aes192-cbc,aes256-cbc,aes128-ctr,aes192-ctr,aes256-ctr''
+    arcfour256,arcfour,aes192-cbc,aes256-cbc,aes128-ctr,
+    aes192-ctr,aes256-ctr''
 .Ed
-.It Cm ClientAliveInterval
-Sets a timeout interval in seconds after which if no data has been received
-from the client,
-.Nm sshd
-will send a message through the encrypted
-channel to request a response from the client.
-The default
-is 0, indicating that these messages will not be sent to the client.
-This option applies to protocol version 2 only.
 .It Cm ClientAliveCountMax
 Sets the number of client alive messages (see above) which may be
 sent without
@@ -213,14 +207,25 @@ If
 .Cm ClientAliveCountMax
 is left at the default, unresponsive ssh clients
 will be disconnected after approximately 45 seconds.
+.It Cm ClientAliveInterval
+Sets a timeout interval in seconds after which if no data has been received
+from the client,
+.Nm sshd
+will send a message through the encrypted
+channel to request a response from the client.
+The default
+is 0, indicating that these messages will not be sent to the client.
+This option applies to protocol version 2 only.
 .It Cm Compression
-Specifies whether compression is allowed.
+Specifies whether compression is allowed, or delayed until
+the user has authenticated successfully.
 The argument must be
-.Dq yes
+.Dq yes ,
+.Dq delayed ,
 or
 .Dq no .
 The default is
-.Dq yes .
+.Dq delayed .
 .It Cm DenyGroups
 This keyword can be followed by a list of group name patterns, separated
 by spaces.
@@ -327,7 +332,7 @@ The default is
 Specifies whether
 .Nm sshd
 should ignore the user's
-.Pa $HOME/.ssh/known_hosts
+.Pa ~/.ssh/known_hosts
 during
 .Cm RhostsRSAAuthentication
 or

diff --git a/sshd_config.5 b/sshd_config.5 index ea79a54bf..048e8924e 100644 --- a/sshd_config.5 +++ b/sshd_config.5
@@ -34,7 +34,7 @@
34	.\" (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF	34	.\" (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF
35	.\" THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.	35	.\" THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
36	.\"	36	.\"
37	.\" $OpenBSD: sshd_config.5,v 1.40 2005/03/18 17:05:00 jmc Exp $	37	.\" $OpenBSD: sshd_config.5,v 1.44 2005/07/25 11:59:40 markus Exp $
38	.Dd September 25, 1999	38	.Dd September 25, 1999
39	.Dt SSHD_CONFIG 5	39	.Dt SSHD_CONFIG 5
40	.Os	40	.Os
@@ -168,24 +168,18 @@ The supported ciphers are
168	.Dq aes128-ctr ,	168	.Dq aes128-ctr ,
169	.Dq aes192-ctr ,	169	.Dq aes192-ctr ,
170	.Dq aes256-ctr ,	170	.Dq aes256-ctr ,
		171	.Dq arcfour128 ,
		172	.Dq arcfour256 ,
171	.Dq arcfour ,	173	.Dq arcfour ,
172	.Dq blowfish-cbc ,	174	.Dq blowfish-cbc ,
173	and	175	and
174	.Dq cast128-cbc .	176	.Dq cast128-cbc .
175	The default is	177	The default is
176	.Bd -literal	178	.Bd -literal
177	``aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,arcfour,	179	``aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,arcfour128,
178	aes192-cbc,aes256-cbc,aes128-ctr,aes192-ctr,aes256-ctr''	180	arcfour256,arcfour,aes192-cbc,aes256-cbc,aes128-ctr,
		181	aes192-ctr,aes256-ctr''
179	.Ed	182	.Ed
180	.It Cm ClientAliveInterval
181	Sets a timeout interval in seconds after which if no data has been received
182	from the client,
183	.Nm sshd
184	will send a message through the encrypted
185	channel to request a response from the client.
186	The default
187	is 0, indicating that these messages will not be sent to the client.
188	This option applies to protocol version 2 only.
189	.It Cm ClientAliveCountMax	183	.It Cm ClientAliveCountMax
190	Sets the number of client alive messages (see above) which may be	184	Sets the number of client alive messages (see above) which may be
191	sent without	185	sent without
@@ -213,14 +207,25 @@ If
213	.Cm ClientAliveCountMax	207	.Cm ClientAliveCountMax
214	is left at the default, unresponsive ssh clients	208	is left at the default, unresponsive ssh clients
215	will be disconnected after approximately 45 seconds.	209	will be disconnected after approximately 45 seconds.
		210	.It Cm ClientAliveInterval
		211	Sets a timeout interval in seconds after which if no data has been received
		212	from the client,
		213	.Nm sshd
		214	will send a message through the encrypted
		215	channel to request a response from the client.
		216	The default
		217	is 0, indicating that these messages will not be sent to the client.
		218	This option applies to protocol version 2 only.
216	.It Cm Compression	219	.It Cm Compression
217	Specifies whether compression is allowed.	220	Specifies whether compression is allowed, or delayed until
		221	the user has authenticated successfully.
218	The argument must be	222	The argument must be
219	.Dq yes	223	.Dq yes ,
		224	.Dq delayed ,
220	or	225	or
221	.Dq no .	226	.Dq no .
222	The default is	227	The default is
223	.Dq yes .	228	.Dq delayed .
224	.It Cm DenyGroups	229	.It Cm DenyGroups
225	This keyword can be followed by a list of group name patterns, separated	230	This keyword can be followed by a list of group name patterns, separated
226	by spaces.	231	by spaces.
@@ -327,7 +332,7 @@ The default is
327	Specifies whether	332	Specifies whether
328	.Nm sshd	333	.Nm sshd
329	should ignore the user's	334	should ignore the user's
330	.Pa $HOME/.ssh/known_hosts	335	.Pa ~/.ssh/known_hosts
331	during	336	during
332	.Cm RhostsRSAAuthentication	337	.Cm RhostsRSAAuthentication
333	or	338	or