[BACK]Return to sshd_config.5 CVS log [TXT][DIR] Up to [local] / src / usr.bin / ssh

Diff for /src/usr.bin/ssh/sshd_config.5 between version 1.117 and 1.118

version 1.117, 2010/02/26 20:29:54 version 1.118, 2010/03/04 10:36:03
Line 815 
Line 815 
 The default is  The default is
 .Dq yes .  .Dq yes .
 Note that this option applies to protocol version 2 only.  Note that this option applies to protocol version 2 only.
   .It Cm RevokedKeys
   Specifies a list of revoked public keys.
   Keys listed in this file will be refused for public key authentication.
   Note that if this file is not readable, then public key authentication will
   be refused for all users.
 .It Cm RhostsRSAAuthentication  .It Cm RhostsRSAAuthentication
 Specifies whether rhosts or /etc/hosts.equiv authentication together  Specifies whether rhosts or /etc/hosts.equiv authentication together
 with successful RSA host authentication is allowed.  with successful RSA host authentication is allowed.
Line 890 
Line 895 
 .Pp  .Pp
 To disable TCP keepalive messages, the value should be set to  To disable TCP keepalive messages, the value should be set to
 .Dq no .  .Dq no .
   .It Cm TrustedUserCAKeys
   Specifies a file containing public keys of certificate authorities that are
   trusted sign user certificates for authentication.
   Keys are listed one per line, empty lines and comments starting with
   .Ql #
   are allowed.
   If a certificate is presented for authentication and has its signing CA key
   listed in this file, then it may be used for authentication for any user
   listed in the certificate's principals list.
   Note that certificates that lack a list of principals will not be permitted
   for authentication using
   .Cm TrustedUserCAKeys .
   For more details in certificates, please see the
   .Sx CERTIFICATES
   section in
   .Xr ssh-keygen 1 .
 .It Cm UseDNS  .It Cm UseDNS
 Specifies whether  Specifies whether
 .Xr sshd 8  .Xr sshd 8
Legend:
Removed from v.1.117  
changed lines
  Added in v.1.118