version 1.338, 2020/10/16 14:34:33 |
version 1.339, 2020/12/22 00:15:23 |
|
|
.Pp |
.Pp |
The list of available key exchange algorithms may also be obtained using |
The list of available key exchange algorithms may also be obtained using |
.Qq ssh -Q kex . |
.Qq ssh -Q kex . |
|
.It Cm KnownHostsCommand |
|
Specifies a command to use to obtain a list of host keys, additional to |
|
those listed in |
|
.Cm UserKnownHostsFile |
|
and |
|
.Cm GlobalKnownHostsFile . |
|
This command is executed after the files have been read. |
|
It may write host keys lines to standard output in identical format to the |
|
usual files (described in the |
|
.Sx VERIFYING HOST KEYS |
|
section in |
|
.Xr ssh 1 ) . |
|
Arguments to |
|
.Cm KnownHostsCommand |
|
accept the tokens described in the |
|
.Sx TOKENS |
|
section. |
|
The command may be invoked multiple times per connection: when preparing |
|
the preference list of host key algorithms to use, again to obtain the |
|
host key for the requested host name and, if |
|
.Cm CheckHostIP |
|
is enabled, one more time to obtain the host key matching the server's |
|
address. |
|
If the command exits abnormally or returns a non-zero exit status then the |
|
connection is terminated. |
.It Cm LocalCommand |
.It Cm LocalCommand |
Specifies a command to execute on the local machine after successfully |
Specifies a command to execute on the local machine after successfully |
connecting to the server. |
connecting to the server. |
|
|
Hash of %l%h%p%r. |
Hash of %l%h%p%r. |
.It %d |
.It %d |
Local user's home directory. |
Local user's home directory. |
|
.It %f |
|
The fingerprint of the server's host key. |
|
.It %H |
|
The |
|
.Pa known_hosts |
|
hostname or address that is being searched for. |
.It %h |
.It %h |
The remote hostname. |
The remote hostname. |
|
.It %I |
|
A string describing the reason for a |
|
.Cm KnownHostsCommand |
|
execution; either |
|
.Cm "ADDRESS" |
|
when looking up a host by address (only when |
|
.Cm CheckHostIP |
|
is enabled), |
|
.Cm "HOSTNAME" |
|
when searching by hostname or |
|
.Cm "ORDER" |
|
when preparing the host key algorithm preference list to use for the |
|
destination host. |
.It %i |
.It %i |
The local user ID. |
The local user ID. |
|
.It %K |
|
The base64 encoded host key. |
.It %k |
.It %k |
The host key alias if specified, otherwise the orignal remote hostname given |
The host key alias if specified, otherwise the orignal remote hostname given |
on the command line. |
on the command line. |
|
|
tunnel forwarding was requested, or |
tunnel forwarding was requested, or |
.Qq NONE |
.Qq NONE |
otherwise. |
otherwise. |
|
.It %t |
|
The type of the server host key, e.g. |
|
.Cm ssh-ed25519 |
.It %u |
.It %u |
The local username. |
The local username. |
.El |
.El |
|
|
.Cm ControlPath , |
.Cm ControlPath , |
.Cm IdentityAgent , |
.Cm IdentityAgent , |
.Cm IdentityFile , |
.Cm IdentityFile , |
|
.Cm KnownHostsCommand , |
.Cm LocalForward , |
.Cm LocalForward , |
.Cm Match exec , |
.Cm Match exec , |
.Cm RemoteCommand , |
.Cm RemoteCommand , |
|
|
.Cm UserKnownHostsFile |
.Cm UserKnownHostsFile |
accept the tokens %%, %C, %d, %h, %i, %L, %l, %n, %p, %r, and %u. |
accept the tokens %%, %C, %d, %h, %i, %L, %l, %n, %p, %r, and %u. |
.Pp |
.Pp |
|
.Cm KnownHostsCommand |
|
additionally accepts the tokens %f, %H, %I, %K and %t. |
|
.Pp |
.Cm Hostname |
.Cm Hostname |
accepts the tokens %% and %h. |
accepts the tokens %% and %h. |
.Pp |
.Pp |
|
|
.Cm ControlPath , |
.Cm ControlPath , |
.Cm IdentityAgent , |
.Cm IdentityAgent , |
.Cm IdentityFile |
.Cm IdentityFile |
|
.Cm KnownHostsCommand , |
and |
and |
.Cm UserKnownHostsFile |
.Cm UserKnownHostsFile |
support environment variables. |
support environment variables. |