summaryrefslogtreecommitdiff
path: root/usr.bin/ssh/ssh_config.5
AgeCommit message (Collapse)Author
2007-10-29clean up after previous macro removal;Jason McIntyre
2007-10-29ProxyCommand and LocalCommand use the user's shell, not /bin/sh; ok djm@Darren Tucker
2007-09-21document KbdInteractiveAuthentication in ssh_config.5;Damien Miller
patch from dkg AT fifthhorseman.net
2007-08-15tun device forwarding now honours ExitOnForwardFailure; ok markus@Kevin Steves
2007-06-08put the MAC list into a display, like we do for ciphers,Jason McIntyre
since groff has trouble handling wide lines;
2007-06-07Add a new MAC algorithm for data integrity, UMAC-64 (not default yet, mustPeter Valchev
specify umac-64@openssh.com). Provides about 20% end-to-end speedup compared to hmac-md5. Represents a different approach to message authentication to that of HMAC that may be beneficial if HMAC based on one of its underlying hash algorithms is found to be vulnerable to a new attack. http://www.ietf.org/rfc/rfc4418.txt in conjunction with and OK djm@
2007-05-31convert to new .Dd format;Jason McIntyre
2007-01-10do not use a list for SYNOPSIS;Jason McIntyre
this is actually part of a larger report sent by eric s. raymond and forwarded by brad, but i only read half of it. spotted by brad.
2006-07-27avoid confusing wording in HashKnownHosts:Jason McIntyre
originally spotted by alan amesbury; ok deraadt
2006-07-11add ExitOnForwardFailure: terminate the connection if ssh(1)Markus Friedl
cannot set up all requested dynamic, local, and remote port forwardings. ok djm, dtucker, stevesk, jmc
2006-07-02more details and clarity for tun(4) device forwarding; ok and helpKevin Steves
jmc@
2006-05-29oops - previous was too long; split the list of auths upJason McIntyre
2006-05-29Add gssapi-with-mic to PreferredAuthentications default list; ok jmcDarren Tucker
2006-03-31remote user escape is %r not %h; spotted by jmc@Damien Miller
2006-03-31kill trailing whitespace;Jason McIntyre
2006-03-30add percent escape chars to the IdentityFile option, bz #1159 basedDamien Miller
on a patch by imaging AT math.ualberta.ca; feedback and ok dtucker@
2006-03-14*AliveCountMax applies to protcol v2 only; ok dtucker, djmMarkus Friedl
2006-03-13Allow config directives to contain whitespace by surrounding them by doubleDarren Tucker
quotes. mindrot #482, man page help from jmc@, ok djm@
2006-02-26comma;Jason McIntyre
2006-02-26move PATTERNS to the end of the main body; requested by dtuckerJason McIntyre
2006-02-25document the possible values for KbdInteractiveDevices;Jason McIntyre
help/ok dtucker
2006-02-24some grammar/wording fixes;Jason McIntyre
2006-02-24more consistency fixes;Jason McIntyre
2006-02-24some consistency fixes;Jason McIntyre
2006-02-24tidy up the refs to PATTERNS;Jason McIntyre
2006-02-24add section on patterns;Jason McIntyre
from dtucker + myself
2006-02-19add some vertical space;Jason McIntyre
2006-02-12slight rewording; ok djmJason McIntyre
2006-02-12add a %l expansion code to the ControlPath, which is filled in with theDamien Miller
local hostname at runtime. Requested by henning@ to avoid some problems with /home on NFS; ok dtucker@
2006-01-20- word change, agreed w/ markusJason McIntyre
- consistency fixes
2006-01-20Document RekeyLimit. Based on patch from jan.iven at cern.ch from mindrot #1056Darren Tucker
with feedback from jmc, djm and markus; ok jmc@ djm@
2006-01-12refer to TCP forwarding, rather than TCP/IP forwarding;Jason McIntyre
2006-01-02some corrections from michael knudsen;Jason McIntyre
2005-12-22put the description of "UsePrivilegedPort" in the correct place;Jason McIntyre
2005-12-17spelling: intented -> intendedKevin Steves
2005-12-17spelling: fowarding, fowardedKevin Steves
2005-12-08new sentence, new line;Jason McIntyre
2005-12-08two changes to the new ssh tunnel support. this breaks compatibilityReyk Floeter
with the initial commit but is required for a portable approach. - make the tunnel id u_int and platform friendly, use predefined types. - support configuration of layer 2 (ethernet) or layer 3 (point-to-point, default) modes. configuration is done using the Tunnel (yes|point-to-point|ethernet|no) option is ssh_config(5) and restricted by the PermitTunnel (yes|point-to-point|ethernet|no) option in sshd_config(5). ok djm@, man page bits by jmc@
2005-12-08keep options in order;Jason McIntyre
2005-12-08make `!command' a little clearer;Jason McIntyre
ok reyk
2005-12-06Add support for tun(4) forwarding over OpenSSH, based on an idea andReyk Floeter
initial channel code bits by markus@. This is a simple and easy way to use OpenSSH for ad hoc virtual private network connections, e.g. administrative tunnels or secure wireless access. It's based on a new ssh channel and works similar to the existing TCP forwarding support, except that it depends on the tun(4) network interface on both ends of the connection for layer 2 or layer 3 tunneling. This diff also adds support for LocalCommand in the ssh(1) client. ok djm@, markus@, jmc@ (manpages), tested and discussed with others
2005-10-30remove trailing whitespace;Jason McIntyre
2005-10-30mention control socket fallback behaviour, reported by tryponraj AT gmail.comDamien Miller
2005-09-19mention ability to specify bind_address for DynamicForward and -D options;Damien Miller
bz#1077 spotted by Haruyama Seigo
2005-07-08new sentence, new line;Jason McIntyre
2005-07-08change BindAddress to match recent ssh -b change; prompted by markus@Darren Tucker
2005-07-04fix Xr and a little grammar;Jason McIntyre
2005-07-04implement support for X11 and agent forwarding over multiplex slaveDamien Miller
connections. Because of protocol limitations, the slave connections inherit the master's DISPLAY and SSH_AUTH_SOCK rather than distinctly forwarding their own. ok dtucker@ "put it in" deraadt@
2005-06-18allow ControlPath=none, patch from dwmw2 AT infradead.org; ok dtucker@Damien Miller
2005-06-08add ControlMaster=auto/autoask options to support opportunistic multiplexing;Damien Miller
tested avsm@ and jakob@, ok markus@
generated by cgit v1.2.3 (git 2.25.1) at 2025-01-13 09:54:01 +0000