summaryrefslogtreecommitdiff
path: root/usr.bin/ssh/sshd_config.5
AgeCommit message (Expand)Author
2017-01-06keep the tokens list sorted;Jason McIntyre
2017-01-06Re-add '%k' token for AuthorizedKeysCommand which was lost during theDarren Tucker
2016-11-30Add a sshd_config DisableForwaring option that disables X11, agent,Damien Miller
2016-11-23allow ClientAlive{Interval,CountMax} in Match; ok dtucker, djmMarkus Friedl
2016-10-07tidy up the formatting in this file. more specifically, replaceJason McIntyre
2016-09-28restore pre-auth compression support in the client -- the previousDamien Miller
2016-09-22organise the token stuff into a separate section;Jason McIntyre
2016-09-22mention curve25519-sha256 KEXDamien Miller
2016-09-21add a way for principals command to get see key ID and serial tooDamien Miller
2016-09-14add %-escapes to AuthorizedPrincipalsCommand to match those supportedDamien Miller
2016-09-07sort; from matthew martinJason McIntyre
2016-08-19remove UseLogin option and support for having /bin/login manageDamien Miller
2016-08-15Catch up with the SSH1 code removal and delete all mention ofChristian Weisgerber
2016-08-12Use 2001:db8::/32, the official IPv6 subnet for configuration examples.Jeremie Courreges-Anglas
2016-07-19tweak previous;Jason McIntyre
2016-07-19Allow wildcard for PermitOpen hosts as well as ports. bz#2582, patch fromDarren Tucker
2016-06-17grammar fix;Jason McIntyre
2016-06-17ban AuthenticationMethods="" and accept AuthenticationMethods=anyDamien Miller
2016-05-04allow setting IdentityAgent to SSH_AUTH_SOCK; ok djm@Markus Friedl
2016-04-27cidr permitted for {allow,deny}users; from lars noodenJason McIntyre
2016-03-17UseDNS affects ssh hostname processing in authorized_keys, notDamien Miller
2016-02-17rsa-sha2-512,rsa-sha2-256 cannot be selected explicitly inDamien Miller
2016-02-17since these pages now clearly tell folks to avoid v1, normaliseJason McIntyre
2016-02-16Replace list of ciphers and MACs adjacent to -1/-2 flag descriptions inDamien Miller
2016-02-11sync crypto algorithm lists in ssh_config(5) and sshd_config(5)Damien Miller
2016-02-05better description for MaxSessions; bz#2531Damien Miller
2015-11-13Support "none" as an argument for sshd_config ForceCommand andDamien Miller
2015-11-13list a couple more options usable in Match blocks; bz#2489Damien Miller
2015-10-07UsePrivilegeSeparation defaults to sandbox now.Igor Sobrado
2015-09-11more clarity on what AuthorizedKeysFile=none does;Damien Miller
2015-08-14match myproposal.h order; from brian conwayJason McIntyre
2015-08-06add prohibit-password as a synonymn for without-password, since theTheo de Raadt
2015-07-30change default: PermitRootLogin without-passwordTheo de Raadt
2015-07-30Allow ssh_config and sshd_config kex parameters options be prefixedDamien Miller
2015-07-20mention that the default of UseDNS=no implies that hostnames cannotDamien Miller
2015-07-10Turn off DSA by default; add HostKeyAlgorithms to the server andMarkus Friedl
2015-07-03refuse to generate or accept RSA keys smaller than 1024 bits;Damien Miller
2015-06-05typo: accidental repetition; bz#2386Damien Miller
2015-05-22add knob to relax GSSAPI host credential check for multihomed hostsDamien Miller
2015-05-21add AuthorizedPrincipalsCommand that allows getting authorized_principalsDamien Miller
2015-05-21support arguments to AuthorizedKeysCommandDamien Miller
2015-04-29Allow ListenAddress, Port and AddressFamily in any order. bz#68,Darren Tucker
2015-04-28enviroment -> environment: apologies to darren for not spotting that firstJason McIntyre
2015-04-28Fix typo in previousDarren Tucker
2015-04-28Document that the TERM environment variable is not subject to SendEnvDarren Tucker
2015-04-27Make sshd default to PermitRootLogin=no;Damien Miller
2015-04-16Document "none" for PidFile XAuthLocation TrustedUserCAKeys and RevokedKeys.Darren Tucker
2015-02-20sort options useable under Match case-insensitively;Damien Miller
2015-02-20more options that are available under Match;Damien Miller
2015-02-02increasing encounters with difficult DNS setups in darknets hasTheo de Raadt