- stevesk@cvs.openbsd.org 2001/03/26 15:47:59
[ssh.1]
document more defaults; misc. cleanup. ok markus@
diff --git a/ChangeLog b/ChangeLog
index 1e138e8..8b6bf39 100644
--- a/ChangeLog
+++ b/ChangeLog
@@ -1,3 +1,9 @@
+20010329
+ - OpenBSD CVS Sync
+ - stevesk@cvs.openbsd.org 2001/03/26 15:47:59
+ [ssh.1]
+ document more defaults; misc. cleanup. ok markus@
+
20010328
- (djm) Reorder tests and library inclusion for Krb4/AFS to try to
resolve linking conflicts with libcrypto. Report and suggested fix
@@ -4735,4 +4741,4 @@
- Wrote replacements for strlcpy and mkdtemp
- Released 1.0pre1
-$Id: ChangeLog,v 1.1025 2001/03/28 11:05:26 djm Exp $
+$Id: ChangeLog,v 1.1026 2001/03/29 00:27:11 mouring Exp $
diff --git a/ssh.1 b/ssh.1
index 8a9fb65..e83f618 100644
--- a/ssh.1
+++ b/ssh.1
@@ -34,7 +34,7 @@
.\" (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF
.\" THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
.\"
-.\" $OpenBSD: ssh.1,v 1.99 2001/03/19 12:49:51 djm Exp $
+.\" $OpenBSD: ssh.1,v 1.100 2001/03/26 15:47:59 stevesk Exp $
.Dd September 25, 1999
.Dt SSH 1
.Os
@@ -640,16 +640,20 @@
.Dq yes
or
.Dq no .
+The default is
+.Dq no .
.It Cm CheckHostIP
If this flag is set to
.Dq yes ,
-ssh will additionally check the host ip address in the
+ssh will additionally check the host IP address in the
.Pa known_hosts
file.
This allows ssh to detect if a host key changed due to DNS spoofing.
If the option is set to
.Dq no ,
the check will not be executed.
+The default is
+.Dq yes .
.It Cm Cipher
Specifies the cipher to use for encrypting the session
in protocol version 1.
@@ -677,8 +681,10 @@
.Dq yes
or
.Dq no .
+The default is
+.Dq no .
.It Cm CompressionLevel
-Specifies the compression level to use if compression is enable.
+Specifies the compression level to use if compression is enabled.
The argument must be an integer from 1 (fast) to 9 (slow, best).
The default level is 6, which is good for most applications.
The meaning of the values is the same as in
@@ -688,12 +694,15 @@
back to rsh or exiting.
The argument must be an integer.
This may be useful in scripts if the connection sometimes fails.
+The default is 4.
.It Cm PubkeyAuthentication
Specifies whether to try public key authentication.
The argument to this keyword must be
.Dq yes
or
.Dq no .
+The default is
+.Dq yes .
Note that this option applies to protocol version 2 only.
.It Cm EscapeChar
Sets the escape character (default:
@@ -720,6 +729,8 @@
.Dq yes
or
.Dq no .
+The default is
+.Dq no .
.It Cm ForwardAgent
Specifies whether the connection to the authentication agent (if any)
will be forwarded to the remote machine.
@@ -849,6 +860,8 @@
.Dq yes
or
.Dq no .
+The default is
+.Dq yes .
Note that this option applies to both protocol version 1 and 2.
.It Cm Port
Specifies the port number to connect on the remote host.
@@ -923,14 +936,17 @@
.Dq yes
or
.Dq no .
+The default is
+.Dq yes .
.It Cm RhostsRSAAuthentication
Specifies whether to try rhosts based authentication with RSA host
authentication.
-This is the primary authentication method for most sites.
The argument must be
.Dq yes
or
.Dq no .
+The default is
+.Dq yes .
.It Cm RSAAuthentication
Specifies whether to try RSA authentication.
The argument to this keyword must be
@@ -940,6 +956,8 @@
RSA authentication will only be
attempted if the identity file exists, or an authentication agent is
running.
+The default is
+.Dq yes .
Note that this option applies to protocol version 1 only.
.It Cm ChallengeResponseAuthentication
Specifies whether to use challenge response authentication.