From: mouring Date: Thu, 29 Mar 2001 00:27:11 +0000 (+0000) Subject: - stevesk@cvs.openbsd.org 2001/03/26 15:47:59 X-Git-Tag: V_2_9_P2~177 X-Git-Url: http://andersk.mit.edu/gitweb/openssh.git/commitdiff_plain/01ce749f57208b60a16fa5a32ca944457baa49e9 - stevesk@cvs.openbsd.org 2001/03/26 15:47:59 [ssh.1] document more defaults; misc. cleanup. ok markus@ --- diff --git a/ChangeLog b/ChangeLog index cbea4ccd..33b560e4 100644 --- a/ChangeLog +++ b/ChangeLog @@ -1,3 +1,9 @@ +20010329 + - OpenBSD CVS Sync + - stevesk@cvs.openbsd.org 2001/03/26 15:47:59 + [ssh.1] + document more defaults; misc. cleanup. ok markus@ + 20010328 - (djm) Reorder tests and library inclusion for Krb4/AFS to try to resolve linking conflicts with libcrypto. Report and suggested fix diff --git a/ssh.1 b/ssh.1 index 8a9fb653..e83f618f 100644 --- a/ssh.1 +++ b/ssh.1 @@ -34,7 +34,7 @@ .\" (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF .\" THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. .\" -.\" $OpenBSD: ssh.1,v 1.99 2001/03/19 12:49:51 djm Exp $ +.\" $OpenBSD: ssh.1,v 1.100 2001/03/26 15:47:59 stevesk Exp $ .Dd September 25, 1999 .Dt SSH 1 .Os @@ -640,16 +640,20 @@ The argument must be .Dq yes or .Dq no . +The default is +.Dq no . .It Cm CheckHostIP If this flag is set to .Dq yes , -ssh will additionally check the host ip address in the +ssh will additionally check the host IP address in the .Pa known_hosts file. This allows ssh to detect if a host key changed due to DNS spoofing. If the option is set to .Dq no , the check will not be executed. +The default is +.Dq yes . .It Cm Cipher Specifies the cipher to use for encrypting the session in protocol version 1. @@ -677,8 +681,10 @@ The argument must be .Dq yes or .Dq no . +The default is +.Dq no . .It Cm CompressionLevel -Specifies the compression level to use if compression is enable. +Specifies the compression level to use if compression is enabled. The argument must be an integer from 1 (fast) to 9 (slow, best). The default level is 6, which is good for most applications. The meaning of the values is the same as in @@ -688,12 +694,15 @@ Specifies the number of tries (one per second) to make before falling back to rsh or exiting. The argument must be an integer. This may be useful in scripts if the connection sometimes fails. +The default is 4. .It Cm PubkeyAuthentication Specifies whether to try public key authentication. The argument to this keyword must be .Dq yes or .Dq no . +The default is +.Dq yes . Note that this option applies to protocol version 2 only. .It Cm EscapeChar Sets the escape character (default: @@ -720,6 +729,8 @@ The argument must be .Dq yes or .Dq no . +The default is +.Dq no . .It Cm ForwardAgent Specifies whether the connection to the authentication agent (if any) will be forwarded to the remote machine. @@ -849,6 +860,8 @@ The argument to this keyword must be .Dq yes or .Dq no . +The default is +.Dq yes . Note that this option applies to both protocol version 1 and 2. .It Cm Port Specifies the port number to connect on the remote host. @@ -923,14 +936,17 @@ The argument to this keyword must be .Dq yes or .Dq no . +The default is +.Dq yes . .It Cm RhostsRSAAuthentication Specifies whether to try rhosts based authentication with RSA host authentication. -This is the primary authentication method for most sites. The argument must be .Dq yes or .Dq no . +The default is +.Dq yes . .It Cm RSAAuthentication Specifies whether to try RSA authentication. The argument to this keyword must be @@ -940,6 +956,8 @@ or RSA authentication will only be attempted if the identity file exists, or an authentication agent is running. +The default is +.Dq yes . Note that this option applies to protocol version 1 only. .It Cm ChallengeResponseAuthentication Specifies whether to use challenge response authentication.