summaryrefslogtreecommitdiff
path: root/usr.bin/ssh/sshd_config.5
AgeCommit message (Expand)Author
2015-09-11more clarity on what AuthorizedKeysFile=none does;Damien Miller
2015-08-14match myproposal.h order; from brian conwayJason McIntyre
2015-08-06add prohibit-password as a synonymn for without-password, since theTheo de Raadt
2015-07-30change default: PermitRootLogin without-passwordTheo de Raadt
2015-07-30Allow ssh_config and sshd_config kex parameters options be prefixedDamien Miller
2015-07-20mention that the default of UseDNS=no implies that hostnames cannotDamien Miller
2015-07-10Turn off DSA by default; add HostKeyAlgorithms to the server andMarkus Friedl
2015-07-03refuse to generate or accept RSA keys smaller than 1024 bits;Damien Miller
2015-06-05typo: accidental repetition; bz#2386Damien Miller
2015-05-22add knob to relax GSSAPI host credential check for multihomed hostsDamien Miller
2015-05-21add AuthorizedPrincipalsCommand that allows getting authorized_principalsDamien Miller
2015-05-21support arguments to AuthorizedKeysCommandDamien Miller
2015-04-29Allow ListenAddress, Port and AddressFamily in any order. bz#68,Darren Tucker
2015-04-28enviroment -> environment: apologies to darren for not spotting that firstJason McIntyre
2015-04-28Fix typo in previousDarren Tucker
2015-04-28Document that the TERM environment variable is not subject to SendEnvDarren Tucker
2015-04-27Make sshd default to PermitRootLogin=no;Damien Miller
2015-04-16Document "none" for PidFile XAuthLocation TrustedUserCAKeys and RevokedKeys.Darren Tucker
2015-02-20sort options useable under Match case-insensitively;Damien Miller
2015-02-20more options that are available under Match;Damien Miller
2015-02-02increasing encounters with difficult DNS setups in darknets hasTheo de Raadt
2015-01-22heirarchy -> hierarchy;Jason McIntyre
2015-01-22Provide a warning about chroot misuses (which sadly, seem to have becomeTheo de Raadt
2015-01-13add sshd_config HostbasedAcceptedKeyTypes and PubkeyAcceptedKeyTypesDamien Miller
2014-12-22mention ssh -Q feature to list supported { MAC, cipher, KEX, key }Damien Miller
2014-12-22tweak previous;Jason McIntyre
2014-12-22correct description of what will happen when a AuthorizedKeysCommand isDamien Miller
2014-12-22remember which public keys have been used for authentication andDamien Miller
2014-12-21tweak previous;Jason McIntyre
2014-12-21Add FingerprintHash option to control algorithm used for keyDamien Miller
2014-12-12revert chunk I didn't mean to commit yet; via jmc@Damien Miller
2014-12-11mention AuthorizedKeysCommandUser must be set forDamien Miller
2014-11-22restore word zapped in previous, and remove some useless "No" macros;Jason McIntyre
2014-11-22/dev/random has created the same effect as /dev/arandom (and /dev/urandom)Theo de Raadt
2014-09-09mention permissions on tun(4) devices in PermitTunnel documentation;Damien Miller
2014-08-30typo.Igor Sobrado
2014-07-28some systems no longer need /dev/log;Ingo Schwarze
2014-07-15Add support for Unix domain socket forwarding. A remote TCP portTodd C. Miller
2014-07-03Add a sshd_config PermitUserRC option to control whether ~/.ssh/rc isDamien Miller
2014-03-28sync available and default algorithms, improve algorithm list formattingChristian Weisgerber
2014-02-27bz#2184 clarify behaviour of a keyword that appears in multipleDamien Miller
2014-01-29document kbdinteractiveauthentication;Jason McIntyre
2013-12-08Use a literal for the default value of KEXAlgorithms. ok deraadt jmcDarren Tucker
2013-12-07add missing mentions of ed25519; ok djm@Christian Weisgerber
2013-11-21no need for .Pp before displays;Jason McIntyre
2013-11-21Add a new protocol 2 transport cipher "chacha20-poly1305@openssh.com"Damien Miller
2013-11-02the default kex is now curve25519-sha256@libssh.orgMarkus Friedl
2013-10-29pty(4), not pty(7);Jason McIntyre
2013-10-29shd_config PermitTTY to disallow TTY allocation, mirroring theDamien Miller
2013-10-24Disallow empty Match statements and add "Match all" which matches everything.Darren Tucker