tyler.durden/openssh-portable
1
0
Fork 0
mirror of https://github.com/PowerShell/openssh-portable.git synced 2025-07-29 16:54:51 +02:00
Code Issues Packages Projects Releases Wiki Activity

- jmc@cvs.openbsd.org 2006/02/25 12:28:34

Browse Source 
[sshd_config.5]
     document the order in which allow/deny directives are processed;
     help/ok dtucker
This commit is contained in:
Damien Miller 2006-03-15 11:58:49 +11:00
parent d450f49d4a
commit ac73e51390
2 changed files with 30 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
ChangeLog
View File

@ -182,6 +182,10 @@
[ssh_config.5] [ssh_config.5]
document the possible values for KbdInteractiveDevices; document the possible values for KbdInteractiveDevices;
help/ok dtucker help/ok dtucker
- jmc@cvs.openbsd.org 2006/02/25 12:28:34
[sshd_config.5]
document the order in which allow/deny directives are processed;
help/ok dtucker
20060313 20060313
- (dtucker) [configure.ac] Bug #1171: Don't use printf("%lld", longlong) - (dtucker) [configure.ac] Bug #1171: Don't use printf("%lld", longlong)
@ -4083,4 +4087,4 @@
- (djm) Trim deprecated options from INSTALL. Mention UsePAM - (djm) Trim deprecated options from INSTALL. Mention UsePAM
- (djm) Fix quote handling in sftp; Patch from admorten AT umich.edu - (djm) Fix quote handling in sftp; Patch from admorten AT umich.edu
$Id: ChangeLog,v 1.4192 2006/03/15 00:58:25 djm Exp $ $Id: ChangeLog,v 1.4193 2006/03/15 00:58:49 djm Exp $

26
sshd_config.5
View File

@ -34,7 +34,7 @@
.\" (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF .\" (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF
.\" THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. .\" THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
.\" .\"
.\" $OpenBSD: sshd_config.5,v 1.53 2006/02/24 23:51:17 jmc Exp $ .\" $OpenBSD: sshd_config.5,v 1.54 2006/02/25 12:28:34 jmc Exp $
.Dd September 25, 1999 .Dd September 25, 1999
.Dt SSHD_CONFIG 5 .Dt SSHD_CONFIG 5
.Os .Os
@ -101,6 +101,12 @@ If specified, login is allowed only for users whose primary
group or supplementary group list matches one of the patterns. group or supplementary group list matches one of the patterns.
Only group names are valid; a numerical group ID is not recognized. Only group names are valid; a numerical group ID is not recognized.
By default, login is allowed for all groups. By default, login is allowed for all groups.
The allow/deny directives are processed in the following order:
.Cm DenyUsers ,
.Cm AllowUsers ,
.Cm DenyGroups ,
and finally
.Cm AllowGroups .
.Pp .Pp
See See
.Sx PATTERNS .Sx PATTERNS
@ -124,6 +130,12 @@ By default, login is allowed for all users.
If the pattern takes the form USER@HOST then USER and HOST If the pattern takes the form USER@HOST then USER and HOST
are separately checked, restricting logins to particular are separately checked, restricting logins to particular
users from particular hosts. users from particular hosts.
The allow/deny directives are processed in the following order:
.Cm DenyUsers ,
.Cm AllowUsers ,
.Cm DenyGroups ,
and finally
.Cm AllowGroups .
.Pp .Pp
See See
.Sx PATTERNS .Sx PATTERNS
@ -234,6 +246,12 @@ Login is disallowed for users whose primary group or supplementary
group list matches one of the patterns. group list matches one of the patterns.
Only group names are valid; a numerical group ID is not recognized. Only group names are valid; a numerical group ID is not recognized.
By default, login is allowed for all groups. By default, login is allowed for all groups.
The allow/deny directives are processed in the following order:
.Cm DenyUsers ,
.Cm AllowUsers ,
.Cm DenyGroups ,
and finally
.Cm AllowGroups .
.Pp .Pp
See See
.Sx PATTERNS .Sx PATTERNS
@ -249,6 +267,12 @@ By default, login is allowed for all users.
If the pattern takes the form USER@HOST then USER and HOST If the pattern takes the form USER@HOST then USER and HOST
are separately checked, restricting logins to particular are separately checked, restricting logins to particular
users from particular hosts. users from particular hosts.
The allow/deny directives are processed in the following order:
.Cm DenyUsers ,
.Cm AllowUsers ,
.Cm DenyGroups ,
and finally
.Cm AllowGroups .
.Pp .Pp
See See
.Sx PATTERNS .Sx PATTERNS