version 1.48, 2006/01/02 17:09:49 |
version 1.49, 2006/02/24 10:33:54 |
|
|
by spaces. |
by spaces. |
If specified, login is allowed only for users whose primary |
If specified, login is allowed only for users whose primary |
group or supplementary group list matches one of the patterns. |
group or supplementary group list matches one of the patterns. |
.Ql \&* |
|
and |
|
.Ql \&? |
|
can be used as |
|
wildcards in the patterns. |
|
Only group names are valid; a numerical group ID is not recognized. |
Only group names are valid; a numerical group ID is not recognized. |
By default, login is allowed for all groups. |
By default, login is allowed for all groups. |
|
.Pp |
|
See |
|
.Sx PATTERNS |
|
in |
|
.Xr ssh_config 5 |
|
for more information on patterns. |
.It Cm AllowTcpForwarding |
.It Cm AllowTcpForwarding |
Specifies whether TCP forwarding is permitted. |
Specifies whether TCP forwarding is permitted. |
The default is |
The default is |
|
|
by spaces. |
by spaces. |
If specified, login is allowed only for user names that |
If specified, login is allowed only for user names that |
match one of the patterns. |
match one of the patterns. |
.Ql \&* |
|
and |
|
.Ql \&? |
|
can be used as |
|
wildcards in the patterns. |
|
Only user names are valid; a numerical user ID is not recognized. |
Only user names are valid; a numerical user ID is not recognized. |
By default, login is allowed for all users. |
By default, login is allowed for all users. |
If the pattern takes the form USER@HOST then USER and HOST |
If the pattern takes the form USER@HOST then USER and HOST |
are separately checked, restricting logins to particular |
are separately checked, restricting logins to particular |
users from particular hosts. |
users from particular hosts. |
|
.Pp |
|
See |
|
.Sx PATTERNS |
|
in |
|
.Xr ssh_config 5 |
|
for more information on patterns. |
.It Cm AuthorizedKeysFile |
.It Cm AuthorizedKeysFile |
Specifies the file that contains the public keys that can be used |
Specifies the file that contains the public keys that can be used |
for user authentication. |
for user authentication. |
|
|
by spaces. |
by spaces. |
Login is disallowed for users whose primary group or supplementary |
Login is disallowed for users whose primary group or supplementary |
group list matches one of the patterns. |
group list matches one of the patterns. |
.Ql \&* |
|
and |
|
.Ql \&? |
|
can be used as |
|
wildcards in the patterns. |
|
Only group names are valid; a numerical group ID is not recognized. |
Only group names are valid; a numerical group ID is not recognized. |
By default, login is allowed for all groups. |
By default, login is allowed for all groups. |
|
.Pp |
|
See |
|
.Sx PATTERNS |
|
in |
|
.Xr ssh_config 5 |
|
for more information on patterns. |
.It Cm DenyUsers |
.It Cm DenyUsers |
This keyword can be followed by a list of user name patterns, separated |
This keyword can be followed by a list of user name patterns, separated |
by spaces. |
by spaces. |
Login is disallowed for user names that match one of the patterns. |
Login is disallowed for user names that match one of the patterns. |
.Ql \&* |
|
and |
|
.Ql \&? |
|
can be used as wildcards in the patterns. |
|
Only user names are valid; a numerical user ID is not recognized. |
Only user names are valid; a numerical user ID is not recognized. |
By default, login is allowed for all users. |
By default, login is allowed for all users. |
If the pattern takes the form USER@HOST then USER and HOST |
If the pattern takes the form USER@HOST then USER and HOST |
are separately checked, restricting logins to particular |
are separately checked, restricting logins to particular |
users from particular hosts. |
users from particular hosts. |
|
.Pp |
|
See |
|
.Sx PATTERNS |
|
in |
|
.Xr ssh_config 5 |
|
for more information on patterns. |
.It Cm GatewayPorts |
.It Cm GatewayPorts |
Specifies whether remote hosts are allowed to connect to ports |
Specifies whether remote hosts are allowed to connect to ports |
forwarded for the client. |
forwarded for the client. |