| version 1.162, 2002/01/18 17:14:16 |
version 1.163, 2002/01/18 20:46:34 |
|
|
| Default is |
Default is |
| .Dq yes . |
.Dq yes . |
| .It Cm AllowGroups |
.It Cm AllowGroups |
| This keyword can be followed by a list of group names, separated |
This keyword can be followed by a list of group name patterns, separated |
| by spaces. |
by spaces. |
| If specified, login is allowed only for users whose primary |
If specified, login is allowed only for users whose primary |
| group or supplementary group list matches one of the patterns. |
group or supplementary group list matches one of the patterns. |
|
|
| can be used as |
can be used as |
| wildcards in the patterns. |
wildcards in the patterns. |
| Only group names are valid; a numerical group ID is not recognized. |
Only group names are valid; a numerical group ID is not recognized. |
| By default login is allowed regardless of the group list. |
By default, login is allowed for all groups. |
| .Pp |
.Pp |
| .It Cm AllowTcpForwarding |
.It Cm AllowTcpForwarding |
| Specifies whether TCP forwarding is permitted. |
Specifies whether TCP forwarding is permitted. |
|
|
| own forwarders. |
own forwarders. |
| .Pp |
.Pp |
| .It Cm AllowUsers |
.It Cm AllowUsers |
| This keyword can be followed by a list of user names, separated |
This keyword can be followed by a list of user name patterns, separated |
| by spaces. |
by spaces. |
| If specified, login is allowed only for users names that |
If specified, login is allowed only for users names that |
| match one of the patterns. |
match one of the patterns. |
|
|
| can be used as |
can be used as |
| wildcards in the patterns. |
wildcards in the patterns. |
| Only user names are valid; a numerical user ID is not recognized. |
Only user names are valid; a numerical user ID is not recognized. |
| By default login is allowed regardless of the user name. |
By default, login is allowed for all users. |
| If the pattern takes the form USER@HOST then USER and HOST |
If the pattern takes the form USER@HOST then USER and HOST |
| are separately checked, restricting logins to particular |
are separately checked, restricting logins to particular |
| users from particular hosts. |
users from particular hosts. |
|
|
| is left at the default, unresponsive ssh clients |
is left at the default, unresponsive ssh clients |
| will be disconnected after approximately 45 seconds. |
will be disconnected after approximately 45 seconds. |
| .It Cm DenyGroups |
.It Cm DenyGroups |
| This keyword can be followed by a number of group names, separated |
This keyword can be followed by a list of group name patterns, separated |
| by spaces. |
by spaces. |
| Users whose primary group or supplementary group list matches |
Login is disallowed for users whose primary group or supplementary |
| one of the patterns aren't allowed to log in. |
group list matches one of the patterns. |
| .Ql \&* |
.Ql \&* |
| and |
and |
| .Ql ? |
.Ql ? |
| can be used as |
can be used as |
| wildcards in the patterns. |
wildcards in the patterns. |
| Only group names are valid; a numerical group ID is not recognized. |
Only group names are valid; a numerical group ID is not recognized. |
| By default login is allowed regardless of the group list. |
By default, login is allowed for all groups. |
| .Pp |
.Pp |
| .It Cm DenyUsers |
.It Cm DenyUsers |
| This keyword can be followed by a number of user names, separated |
This keyword can be followed by a list of user name patterns, separated |
| by spaces. |
by spaces. |
| Login is disallowed for user names that match one of the patterns. |
Login is disallowed for user names that match one of the patterns. |
| .Ql \&* |
.Ql \&* |
|
|
| .Ql ? |
.Ql ? |
| can be used as wildcards in the patterns. |
can be used as wildcards in the patterns. |
| Only user names are valid; a numerical user ID is not recognized. |
Only user names are valid; a numerical user ID is not recognized. |
| By default login is allowed regardless of the user name. |
By default, login is allowed for all users. |
| .It Cm GatewayPorts |
.It Cm GatewayPorts |
| Specifies whether remote hosts are allowed to connect to ports |
Specifies whether remote hosts are allowed to connect to ports |
| forwarded for the client. |
forwarded for the client. |
![[BACK]](/icons/back.gif){kind=icon}
Return to sshd.8 CVS log ![[TXT]](/icons/text.gif){kind=icon}
![[DIR]](/icons/dir.gif){kind=icon}
Up to [local] / src / usr.bin / ssh