X-Git-Url: http://andersk.mit.edu/gitweb/openssh.git/blobdiff_plain/5adf6b9a142245b3f5d707d2fb7475ba47ad7121..HEAD:/ssh_config.5 diff --git a/ssh_config.5 b/ssh_config.5 index f60b86e5..7d577360 100644 --- a/ssh_config.5 +++ b/ssh_config.5 @@ -34,7 +34,7 @@ .\" (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF .\" THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. .\" -.\" $OpenBSD: ssh_config.5,v 1.115 2008/11/04 08:22:13 djm Exp $ +.\" $OpenBSD: ssh_config.5,v 1.126 2010/01/09 23:04:13 dtucker Exp $ .Dd $Mdocdate$ .Dt SSH_CONFIG 5 .Os @@ -204,9 +204,9 @@ and .Dq cast128-cbc . The default is: .Bd -literal -offset 3n -aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,arcfour128, -arcfour256,arcfour,aes192-cbc,aes256-cbc,aes128-ctr, -aes192-ctr,aes256-ctr +aes128-ctr,aes192-ctr,aes256-ctr,arcfour256,arcfour128, +aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,aes192-cbc, +aes256-cbc,arcfour .Ed .It Cm ClearAllForwardings Specifies that all local, remote, and dynamic port forwardings @@ -616,6 +616,13 @@ The following escape character substitutions will be performed: (remote user name) or .Ql %u (local user name). +.Pp +The command is run synchronously and does not have access to the +session of the +.Xr ssh 1 +that spawned it. +It should not be used for interactive commands. +.Pp This directive is ignored unless .Cm PermitLocalCommand has been enabled. @@ -730,11 +737,13 @@ The possible values are and .Sq 2 . Multiple versions must be comma-separated. -The default is -.Dq 2,1 . -This means that ssh -tries version 2 and falls back to version 1 +When this option is set to +.Dq 2,1 +.Nm ssh +will try version 2 and fall back to version 1 if version 2 is not available. +The default is +.Sq 2 . .It Cm ProxyCommand Specifies the command to use to connect to the server. The command @@ -815,6 +824,13 @@ Privileged ports can be forwarded only when logging in as root on the remote machine. .Pp If the +.Ar port +argument is +.Ql 0 , +the listen port will be dynamically allocated on the server and reported +to the client at run time. +.Pp +If the .Ar bind_address is not specified, the default is to only bind to loopback addresses. If the @@ -1079,17 +1095,6 @@ Specifies the full pathname of the program. The default is .Pa /usr/X11R6/bin/xauth . -.It Cm ZeroKnowledgePasswordAuthentication -Specifies whether to use zero knowledge password authentication. -This authentication method avoids exposure of password to untrusted -hosts. -The argument to this keyword must be -.Dq yes -or -.Dq no . -The default is currently -.Dq no -as this method is considered experimental. .El .Sh PATTERNS A