tyler.durden
/
openssh-portable
mirror of https://github.com/PowerShell/openssh-portable.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

- jmc@cvs.openbsd.org 2010/03/04 12:51:25 

[ssh.1 sshd_config.5]
     tweak previous;
This commit is contained in:
Damien Miller 2010-03-05 07:39:01 +11:00
parent 700dcfa3e0
commit 72b33820af
3 changed files with 13 additions and 7 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
ChangeLog
View File

@ -1,3 +1,9 @@
20100305
- OpenBSD CVS Sync
- jmc@cvs.openbsd.org 2010/03/04 12:51:25
[ssh.1 sshd_config.5]
tweak previous;
20100304 20100304
- (djm) [ssh-keygen.c] Use correct local variable, instead of - (djm) [ssh-keygen.c] Use correct local variable, instead of
maybe-undefined global "optarg" maybe-undefined global "optarg"

8
ssh.1
View File

@ -34,7 +34,7 @@
.\" (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF .\" (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF
.\" THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. .\" THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
.\" .\"
.\" $OpenBSD: ssh.1,v 1.297 2010/03/04 10:36:03 djm Exp $ .\" $OpenBSD: ssh.1,v 1.298 2010/03/04 12:51:25 jmc Exp $
.Dd $Mdocdate: March 4 2010 $ .Dd $Mdocdate: March 4 2010 $
.Dt SSH 1 .Dt SSH 1
.Os .Os
@ -1122,7 +1122,7 @@ section of
.Xr ssh-keygen 1 .Xr ssh-keygen 1
for more details. for more details.
.Pp .Pp
Keys may be also be marked as revoked using the Keys may also be marked as revoked using the
.Dq @revoked .Dq @revoked
marker. marker.
Revoked keys will always trigger a warning when encountered and the host Revoked keys will always trigger a warning when encountered and the host
@ -1133,10 +1133,10 @@ For example:
.Pp .Pp
Revoking a key revokes it for direct use and as a certification authority. Revoking a key revokes it for direct use and as a certification authority.
Do not use both the Do not use both the
.Dq @cert-authority and .Dq @cert-authority
and
.Dq @revoked .Dq @revoked
markers on the same line. markers on the same line.
.Pp
.Sh SSH-BASED VIRTUAL PRIVATE NETWORKS .Sh SSH-BASED VIRTUAL PRIVATE NETWORKS
.Nm .Nm
contains support for Virtual Private Network (VPN) tunnelling contains support for Virtual Private Network (VPN) tunnelling

6
sshd_config.5
View File

@ -34,7 +34,7 @@
.\" (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF .\" (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF
.\" THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. .\" THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
.\" .\"
.\" $OpenBSD: sshd_config.5,v 1.118 2010/03/04 10:36:03 djm Exp $ .\" $OpenBSD: sshd_config.5,v 1.119 2010/03/04 12:51:25 jmc Exp $
.Dd $Mdocdate: March 4 2010 $ .Dd $Mdocdate: March 4 2010 $
.Dt SSHD_CONFIG 5 .Dt SSHD_CONFIG 5
.Os .Os
@ -897,7 +897,7 @@ To disable TCP keepalive messages, the value should be set to
.It Cm TrustedUserCAKeys .It Cm TrustedUserCAKeys
Specifies a file containing public keys of certificate authorities that are Specifies a file containing public keys of certificate authorities that are
trusted sign user certificates for authentication. trusted sign user certificates for authentication.
Keys are listed one per line, empty lines and comments starting with Keys are listed one per line; empty lines and comments starting with
.Ql # .Ql #
are allowed. are allowed.
If a certificate is presented for authentication and has its signing CA key If a certificate is presented for authentication and has its signing CA key
@ -906,7 +906,7 @@ listed in the certificate's principals list.
Note that certificates that lack a list of principals will not be permitted Note that certificates that lack a list of principals will not be permitted
for authentication using for authentication using
.Cm TrustedUserCAKeys . .Cm TrustedUserCAKeys .
For more details in certificates, please see the For more details on certificates, see the
.Sx CERTIFICATES .Sx CERTIFICATES
section in section in
.Xr ssh-keygen 1 . .Xr ssh-keygen 1 .