[sshd.8 sshd_config.5]
Escape ?, * and ! in .Ql for nroff compatibility. OpenSSH Portable
Bug #550 and * escaping suggested by jmc@.
- deraadt@cvs.openbsd.org 2003/04/26 04:29:49
[ssh-keyscan.c]
-t in usage(); rogier@quaak.org
- deraadt@cvs.openbsd.org 2003/04/26 04:29:49
[ssh-keyscan.c]
-t in usage(); rogier@quaak.org
+ - mouring@cvs.openbsd.org 2003/04/30 01:16:20
+ [sshd.8 sshd_config.5]
+ Escape ?, * and ! in .Ql for nroff compatibility. OpenSSH Portable
+ Bug #550 and * escaping suggested by jmc@.
20030512
- (djm) Redhat spec: Don't install profile.d scripts when not
20030512
- (djm) Redhat spec: Don't install profile.d scripts when not
.\" (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF
.\" THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
.\"
.\" (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF
.\" THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
.\"
-.\" $OpenBSD: sshd.8,v 1.194 2003/01/31 21:54:40 jmc Exp $
+.\" $OpenBSD: sshd.8,v 1.195 2003/04/30 01:16:20 mouring Exp $
.Dd September 25, 1999
.Dt SSHD 8
.Os
.Dd September 25, 1999
.Dt SSHD 8
.Os
Specifies that in addition to public key authentication, the canonical name
of the remote host must be present in the comma-separated list of
patterns
Specifies that in addition to public key authentication, the canonical name
of the remote host must be present in the comma-separated list of
patterns
serve as wildcards).
The list may also contain
patterns negated by prefixing them with
serve as wildcards).
The list may also contain
patterns negated by prefixing them with
if the canonical host name matches a negated pattern, the key is not accepted.
The purpose
of this option is to optionally increase security: public key authentication
if the canonical host name matches a negated pattern, the key is not accepted.
The purpose
of this option is to optionally increase security: public key authentication
bits, exponent, modulus, comment.
The fields are separated by spaces.
.Pp
bits, exponent, modulus, comment.
The fields are separated by spaces.
.Pp
-Hostnames is a comma-separated list of patterns ('*' and '?' act as
+Hostnames is a comma-separated list of patterns (
+.Ql \&*
+and
+.Ql \&?
+act as
wildcards); each pattern in turn is matched against the canonical host
name (when authenticating a client) or against the user-supplied
name (when authenticating a server).
A pattern may also be preceded by
wildcards); each pattern in turn is matched against the canonical host
name (when authenticating a client) or against the user-supplied
name (when authenticating a server).
A pattern may also be preceded by
to indicate negation: if the host name matches a negated
pattern, it is not accepted (by that line) even if it matched another
pattern on the line.
to indicate negation: if the host name matches a negated
pattern, it is not accepted (by that line) even if it matched another
pattern on the line.
.\" (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF
.\" THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
.\"
.\" (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF
.\" THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
.\"
-.\" $OpenBSD: sshd_config.5,v 1.15 2003/03/28 10:11:43 jmc Exp $
+.\" $OpenBSD: sshd_config.5,v 1.16 2003/04/30 01:16:20 mouring Exp $
.Dd September 25, 1999
.Dt SSHD_CONFIG 5
.Os
.Dd September 25, 1999
.Dt SSHD_CONFIG 5
.Os
group or supplementary group list matches one of the patterns.
.Ql \&*
and
group or supplementary group list matches one of the patterns.
.Ql \&*
and
can be used as
wildcards in the patterns.
Only group names are valid; a numerical group ID is not recognized.
can be used as
wildcards in the patterns.
Only group names are valid; a numerical group ID is not recognized.
match one of the patterns.
.Ql \&*
and
match one of the patterns.
.Ql \&*
and
can be used as
wildcards in the patterns.
Only user names are valid; a numerical user ID is not recognized.
can be used as
wildcards in the patterns.
Only user names are valid; a numerical user ID is not recognized.
group list matches one of the patterns.
.Ql \&*
and
group list matches one of the patterns.
.Ql \&*
and
can be used as
wildcards in the patterns.
Only group names are valid; a numerical group ID is not recognized.
can be used as
wildcards in the patterns.
Only group names are valid; a numerical group ID is not recognized.
Login is disallowed for user names that match one of the patterns.
.Ql \&*
and
Login is disallowed for user names that match one of the patterns.
.Ql \&*
and
can be used as wildcards in the patterns.
Only user names are valid; a numerical user ID is not recognized.
By default, login is allowed for all users.
can be used as wildcards in the patterns.
Only user names are valid; a numerical user ID is not recognized.
By default, login is allowed for all users.