version 1.33, 2000/02/21 14:19:09 |
version 1.34, 2000/02/24 18:22:16 |
|
|
.Nm |
.Nm |
does not start if this file is group/world-accessible. |
does not start if this file is group/world-accessible. |
.It Cm IgnoreRhosts |
.It Cm IgnoreRhosts |
Specifies that rhosts and shosts files will not be used in |
Specifies that |
authentication. |
.Pa .rhosts |
|
and |
|
.Pa .shosts |
|
files will not be used in authentication. |
.Pa /etc/hosts.equiv |
.Pa /etc/hosts.equiv |
and |
and |
.Pa /etc/shosts.equiv |
.Pa /etc/shosts.equiv |
are still used. The default is |
are still used. The default is |
.Dq no . |
.Dq yes . |
.It Cm IgnoreUserKnownHosts |
.It Cm IgnoreUserKnownHosts |
Specifies whether |
Specifies whether |
.Nm |
.Nm |
|
|
When password authentication is allowed, it specifies whether the |
When password authentication is allowed, it specifies whether the |
server allows login to accounts with empty password strings. The default |
server allows login to accounts with empty password strings. The default |
is |
is |
.Dq yes . |
.Dq no . |
.It Cm PermitRootLogin |
.It Cm PermitRootLogin |
Specifies whether the root can log in using |
Specifies whether the root can log in using |
.Xr ssh 1 . |
.Xr ssh 1 . |
|
|
.It Cm RhostsRSAAuthentication |
.It Cm RhostsRSAAuthentication |
Specifies whether rhosts or /etc/hosts.equiv authentication together |
Specifies whether rhosts or /etc/hosts.equiv authentication together |
with successful RSA host authentication is allowed. The default is |
with successful RSA host authentication is allowed. The default is |
.Dq yes . |
.Dq no . |
.It Cm RSAAuthentication |
.It Cm RSAAuthentication |
Specifies whether pure RSA authentication is allowed. The default is |
Specifies whether pure RSA authentication is allowed. The default is |
.Dq yes . |
.Dq yes . |
|
|
X11 forwarding. This prevents |
X11 forwarding. This prevents |
.Nm |
.Nm |
from interfering with real X11 servers. |
from interfering with real X11 servers. |
|
The default is 10. |
.It Cm X11Forwarding |
.It Cm X11Forwarding |
Specifies whether X11 forwarding is permitted. The default is |
Specifies whether X11 forwarding is permitted. The default is |
.Dq yes . |
.Dq no . |
Note that disabling X11 forwarding does not improve security in any |
Note that disabling X11 forwarding does not improve security in any |
way, as users can always install their own forwarders. |
way, as users can always install their own forwarders. |
.El |
.El |