blob: e5143984947d90f17cf7cfea06852c02e1c5b051 [file] [log] [blame]
Ben Lindstrom9f049032002-06-21 00:59:05 +00001.\"
2.\" Author: Tatu Ylonen <ylo@cs.hut.fi>
3.\" Copyright (c) 1995 Tatu Ylonen <ylo@cs.hut.fi>, Espoo, Finland
4.\" All rights reserved
5.\"
6.\" As far as I am concerned, the code I have written for this software
7.\" can be used freely for any purpose. Any derived versions of this
8.\" software must be clearly marked as such, and if the derived work is
9.\" incompatible with the protocol description in the RFC file, it must be
10.\" called by a name other than "ssh" or "Secure Shell".
11.\"
12.\" Copyright (c) 1999,2000 Markus Friedl. All rights reserved.
13.\" Copyright (c) 1999 Aaron Campbell. All rights reserved.
14.\" Copyright (c) 1999 Theo de Raadt. All rights reserved.
15.\"
16.\" Redistribution and use in source and binary forms, with or without
17.\" modification, are permitted provided that the following conditions
18.\" are met:
19.\" 1. Redistributions of source code must retain the above copyright
20.\" notice, this list of conditions and the following disclaimer.
21.\" 2. Redistributions in binary form must reproduce the above copyright
22.\" notice, this list of conditions and the following disclaimer in the
23.\" documentation and/or other materials provided with the distribution.
24.\"
25.\" THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR
26.\" IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES
27.\" OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED.
28.\" IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT,
29.\" INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
30.\" NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
31.\" DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
32.\" THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
33.\" (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF
34.\" THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
35.\"
markus@openbsd.org3a1638d2015-07-10 06:21:53 +000036.\" $OpenBSD: ssh_config.5,v 1.213 2015/07/10 06:21:53 markus Exp $
37.Dd $Mdocdate: July 10 2015 $
Ben Lindstrom9f049032002-06-21 00:59:05 +000038.Dt SSH_CONFIG 5
39.Os
40.Sh NAME
41.Nm ssh_config
42.Nd OpenSSH SSH client configuration files
43.Sh SYNOPSIS
Darren Tuckerbf6b3282007-02-19 22:08:17 +110044.Nm ~/.ssh/config
45.Nm /etc/ssh/ssh_config
Ben Lindstrom9f049032002-06-21 00:59:05 +000046.Sh DESCRIPTION
Damien Miller45ee2b92006-03-15 11:56:18 +110047.Xr ssh 1
Ben Lindstrom9f049032002-06-21 00:59:05 +000048obtains configuration data from the following sources in
49the following order:
Damien Miller5c853b52006-03-15 11:37:02 +110050.Pp
Ben Lindstrom479b4762002-08-20 19:04:51 +000051.Bl -enum -offset indent -compact
52.It
53command-line options
54.It
55user's configuration file
Damien Miller167ea5d2005-05-26 12:04:02 +100056.Pq Pa ~/.ssh/config
Ben Lindstrom479b4762002-08-20 19:04:51 +000057.It
58system-wide configuration file
59.Pq Pa /etc/ssh/ssh_config
60.El
Ben Lindstrom9f049032002-06-21 00:59:05 +000061.Pp
62For each parameter, the first obtained value
63will be used.
Darren Tucker43d8e282005-02-09 09:51:08 +110064The configuration files contain sections separated by
Ben Lindstrom9f049032002-06-21 00:59:05 +000065.Dq Host
66specifications, and that section is only applied for hosts that
67match one of the patterns given in the specification.
djm@openbsd.org957fbce2014-10-08 22:20:25 +000068The matched host name is usually the one given on the command line
69(see the
70.Cm CanonicalizeHostname
71option for exceptions.)
Ben Lindstrom9f049032002-06-21 00:59:05 +000072.Pp
73Since the first obtained value for each parameter is used, more
74host-specific declarations should be given near the beginning of the
75file, and general defaults at the end.
76.Pp
77The configuration file has the following format:
78.Pp
79Empty lines and lines starting with
80.Ql #
81are comments.
Ben Lindstrom9f049032002-06-21 00:59:05 +000082Otherwise a line is of the format
83.Dq keyword arguments .
84Configuration options may be separated by whitespace or
85optional whitespace and exactly one
86.Ql = ;
87the latter format is useful to avoid the need to quote whitespace
88when specifying configuration options using the
89.Nm ssh ,
Damien Miller4aea9742006-03-15 11:59:39 +110090.Nm scp ,
Ben Lindstrom9f049032002-06-21 00:59:05 +000091and
92.Nm sftp
93.Fl o
94option.
Damien Miller306d1182006-03-15 12:05:59 +110095Arguments may optionally be enclosed in double quotes
96.Pq \&"
97in order to represent arguments containing spaces.
Ben Lindstrom9f049032002-06-21 00:59:05 +000098.Pp
99The possible
100keywords and their meanings are as follows (note that
101keywords are case-insensitive and arguments are case-sensitive):
102.Bl -tag -width Ds
103.It Cm Host
104Restricts the following declarations (up to the next
105.Cm Host
Damien Miller194fd902013-10-15 12:13:05 +1100106or
107.Cm Match
Ben Lindstrom9f049032002-06-21 00:59:05 +0000108keyword) to be only for those hosts that match one of the patterns
109given after the keyword.
Damien Millerfa51b162008-11-03 19:17:33 +1100110If more than one pattern is provided, they should be separated by whitespace.
Ben Lindstrom9f049032002-06-21 00:59:05 +0000111A single
Damien Miller208f1ed2006-03-15 11:56:03 +1100112.Ql *
Ben Lindstrom9f049032002-06-21 00:59:05 +0000113as a pattern can be used to provide global
114defaults for all hosts.
djm@openbsd.org957fbce2014-10-08 22:20:25 +0000115The host is usually the
Ben Lindstrom9f049032002-06-21 00:59:05 +0000116.Ar hostname
djm@openbsd.org957fbce2014-10-08 22:20:25 +0000117argument given on the command line
118(see the
119.Cm CanonicalizeHostname
120option for exceptions.)
Damien Millerf54a4b92006-03-15 11:54:36 +1100121.Pp
Damien Millerfe924212011-05-15 08:44:45 +1000122A pattern entry may be negated by prefixing it with an exclamation mark
123.Pq Sq !\& .
124If a negated entry is matched, then the
125.Cm Host
126entry is ignored, regardless of whether any other patterns on the line
127match.
128Negated matches are therefore useful to provide exceptions for wildcard
129matches.
130.Pp
Damien Millerf54a4b92006-03-15 11:54:36 +1100131See
132.Sx PATTERNS
133for more information on patterns.
Damien Millerd77b81f2013-10-17 11:39:00 +1100134.It Cm Match
Damien Miller194fd902013-10-15 12:13:05 +1100135Restricts the following declarations (up to the next
136.Cm Host
137or
138.Cm Match
139keyword) to be used only when the conditions following the
140.Cm Match
141keyword are satisfied.
djm@openbsd.org957fbce2014-10-08 22:20:25 +0000142Match conditions are specified using one or more critera
Damien Millercf31f382013-10-24 21:02:56 +1100143or the single token
144.Cm all
djm@openbsd.org957fbce2014-10-08 22:20:25 +0000145which always matches.
146The available criteria keywords are:
147.Cm canonical ,
Damien Miller8a04be72013-10-23 16:29:40 +1100148.Cm exec ,
Damien Miller194fd902013-10-15 12:13:05 +1100149.Cm host ,
150.Cm originalhost ,
151.Cm user ,
152and
153.Cm localuser .
djm@openbsd.org957fbce2014-10-08 22:20:25 +0000154The
155.Cm all
156criteria must appear alone or immediately after
jmc@openbsd.orgb1ba15f2014-10-09 06:21:31 +0000157.Cm canonical .
djm@openbsd.org957fbce2014-10-08 22:20:25 +0000158Other criteria may be combined arbitrarily.
159All criteria but
160.Cm all
161and
162.Cm canonical
163require an argument.
164Criteria may be negated by prepending an exclamation mark
165.Pq Sq !\& .
Damien Miller194fd902013-10-15 12:13:05 +1100166.Pp
Damien Miller8e5a67f2013-10-23 16:30:25 +1100167The
djm@openbsd.org957fbce2014-10-08 22:20:25 +0000168.Cm canonical
dtucker@openbsd.orgdd2cfeb2015-05-28 05:09:45 +0000169keyword matches only when the configuration file is being re-parsed
djm@openbsd.org957fbce2014-10-08 22:20:25 +0000170after hostname canonicalization (see the
171.Cm CanonicalizeHostname
172option.)
173This may be useful to specify conditions that work with canonical host
174names only.
175The
Damien Miller8a04be72013-10-23 16:29:40 +1100176.Cm exec
Damien Miller8e5a67f2013-10-23 16:30:25 +1100177keyword executes the specified command under the user's shell.
Damien Miller194fd902013-10-15 12:13:05 +1100178If the command returns a zero exit status then the condition is considered true.
179Commands containing whitespace characters must be quoted.
Damien Miller5c86ebd2013-10-23 16:29:12 +1100180The following character sequences in the command will be expanded prior to
181execution:
182.Ql %L
183will be substituted by the first component of the local host name,
184.Ql %l
185will be substituted by the local host name (including any domain name),
186.Ql %h
187will be substituted by the target host name,
188.Ql %n
189will be substituted by the original target host name
Damien Miller8a04be72013-10-23 16:29:40 +1100190specified on the command-line,
Damien Miller5c86ebd2013-10-23 16:29:12 +1100191.Ql %p
192the destination port,
193.Ql %r
194by the remote login username, and
195.Ql %u
196by the username of the user running
197.Xr ssh 1 .
Damien Miller194fd902013-10-15 12:13:05 +1100198.Pp
199The other keywords' criteria must be single entries or comma-separated
200lists and may use the wildcard and negation operators described in the
201.Sx PATTERNS
202section.
203The criteria for the
204.Cm host
205keyword are matched against the target hostname, after any substitution
206by the
207.Cm Hostname
djm@openbsd.org957fbce2014-10-08 22:20:25 +0000208or
209.Cm CanonicalizeHostname
210options.
Damien Miller194fd902013-10-15 12:13:05 +1100211The
212.Cm originalhost
213keyword matches against the hostname as it was specified on the command-line.
214The
215.Cm user
216keyword matches against the target username on the remote host.
217The
218.Cm localuser
219keyword matches against the name of the local user running
220.Xr ssh 1
221(this keyword may be useful in system-wide
222.Nm
223files).
Damien Miller20a8f972003-05-18 20:50:30 +1000224.It Cm AddressFamily
Damien Millerfbf486b2003-05-23 18:44:23 +1000225Specifies which address family to use when connecting.
226Valid arguments are
Damien Miller20a8f972003-05-18 20:50:30 +1000227.Dq any ,
228.Dq inet
Damien Miller45ee2b92006-03-15 11:56:18 +1100229(use IPv4 only), or
Damien Miller20a8f972003-05-18 20:50:30 +1000230.Dq inet6
Darren Tucker79a7acf2005-02-09 09:48:57 +1100231(use IPv6 only).
Ben Lindstrom9f049032002-06-21 00:59:05 +0000232.It Cm BatchMode
233If set to
234.Dq yes ,
235passphrase/password querying will be disabled.
236This option is useful in scripts and other batch jobs where no user
237is present to supply the password.
238The argument must be
239.Dq yes
240or
241.Dq no .
242The default is
243.Dq no .
244.It Cm BindAddress
Darren Tucker89f4d472005-07-14 17:06:21 +1000245Use the specified address on the local machine as the source address of
Darren Tucker6c71d202005-07-14 17:06:50 +1000246the connection.
247Only useful on systems with more than one address.
Ben Lindstrom9f049032002-06-21 00:59:05 +0000248Note that this option does not work if
249.Cm UsePrivilegedPort
250is set to
251.Dq yes .
Damien Miller0faf7472013-10-17 11:47:23 +1100252.It Cm CanonicalDomains
Damien Miller607af342013-10-17 11:47:51 +1100253When
Damien Miller38505592013-10-17 11:48:13 +1100254.Cm CanonicalizeHostname
Damien Miller0faf7472013-10-17 11:47:23 +1100255is enabled, this option specifies the list of domain suffixes in which to
256search for the specified destination host.
Damien Miller38505592013-10-17 11:48:13 +1100257.It Cm CanonicalizeFallbackLocal
Damien Miller51682fa2013-10-17 11:48:31 +1100258Specifies whether to fail with an error when hostname canonicalization fails.
Damien Miller607af342013-10-17 11:47:51 +1100259The default,
Darren Tuckerb7e01c02014-01-19 22:36:13 +1100260.Dq yes ,
Damien Miller607af342013-10-17 11:47:51 +1100261will attempt to look up the unqualified hostname using the system resolver's
Damien Miller0faf7472013-10-17 11:47:23 +1100262search rules.
263A value of
Darren Tuckerb7e01c02014-01-19 22:36:13 +1100264.Dq no
Damien Miller0faf7472013-10-17 11:47:23 +1100265will cause
266.Xr ssh 1
267to fail instantly if
Damien Miller38505592013-10-17 11:48:13 +1100268.Cm CanonicalizeHostname
Damien Miller0faf7472013-10-17 11:47:23 +1100269is enabled and the target hostname cannot be found in any of the domains
270specified by
271.Cm CanonicalDomains .
Damien Miller38505592013-10-17 11:48:13 +1100272.It Cm CanonicalizeHostname
Damien Miller51682fa2013-10-17 11:48:31 +1100273Controls whether explicit hostname canonicalization is performed.
Damien Miller607af342013-10-17 11:47:51 +1100274The default,
275.Dq no ,
Damien Miller0faf7472013-10-17 11:47:23 +1100276is not to perform any name rewriting and let the system resolver handle all
277hostname lookups.
278If set to
279.Dq yes
280then, for connections that do not use a
281.Cm ProxyCommand ,
282.Xr ssh 1
Damien Miller38505592013-10-17 11:48:13 +1100283will attempt to canonicalize the hostname specified on the command line
Damien Miller0faf7472013-10-17 11:47:23 +1100284using the
285.Cm CanonicalDomains
286suffixes and
Damien Miller38505592013-10-17 11:48:13 +1100287.Cm CanonicalizePermittedCNAMEs
Damien Miller0faf7472013-10-17 11:47:23 +1100288rules.
289If
Damien Miller38505592013-10-17 11:48:13 +1100290.Cm CanonicalizeHostname
Damien Miller0faf7472013-10-17 11:47:23 +1100291is set to
292.Dq always ,
Damien Miller51682fa2013-10-17 11:48:31 +1100293then canonicalization is applied to proxied connections too.
Damien Miller13f97b22014-02-24 15:57:55 +1100294.Pp
djm@openbsd.org957fbce2014-10-08 22:20:25 +0000295If this option is enabled, then the configuration files are processed
296again using the new target name to pick up any new configuration in matching
Damien Miller13f97b22014-02-24 15:57:55 +1100297.Cm Host
djm@openbsd.org957fbce2014-10-08 22:20:25 +0000298and
299.Cm Match
Damien Miller13f97b22014-02-24 15:57:55 +1100300stanzas.
Damien Miller38505592013-10-17 11:48:13 +1100301.It Cm CanonicalizeMaxDots
Damien Miller607af342013-10-17 11:47:51 +1100302Specifies the maximum number of dot characters in a hostname before
Damien Miller51682fa2013-10-17 11:48:31 +1100303canonicalization is disabled.
Damien Miller607af342013-10-17 11:47:51 +1100304The default,
305.Dq 1 ,
306allows a single dot (i.e. hostname.subdomain).
Damien Miller38505592013-10-17 11:48:13 +1100307.It Cm CanonicalizePermittedCNAMEs
Damien Miller607af342013-10-17 11:47:51 +1100308Specifies rules to determine whether CNAMEs should be followed when
Damien Miller38505592013-10-17 11:48:13 +1100309canonicalizing hostnames.
Damien Miller0faf7472013-10-17 11:47:23 +1100310The rules consist of one or more arguments of
Damien Miller607af342013-10-17 11:47:51 +1100311.Ar source_domain_list : Ns Ar target_domain_list ,
Damien Miller0faf7472013-10-17 11:47:23 +1100312where
313.Ar source_domain_list
Damien Miller51682fa2013-10-17 11:48:31 +1100314is a pattern-list of domains that may follow CNAMEs in canonicalization,
Damien Miller0faf7472013-10-17 11:47:23 +1100315and
316.Ar target_domain_list
Damien Miller607af342013-10-17 11:47:51 +1100317is a pattern-list of domains that they may resolve to.
Damien Miller0faf7472013-10-17 11:47:23 +1100318.Pp
319For example,
320.Dq *.a.example.com:*.b.example.com,*.c.example.com
321will allow hostnames matching
322.Dq *.a.example.com
Damien Miller38505592013-10-17 11:48:13 +1100323to be canonicalized to names in the
Damien Miller0faf7472013-10-17 11:47:23 +1100324.Dq *.b.example.com
325or
326.Dq *.c.example.com
327domains.
Ben Lindstrom9f049032002-06-21 00:59:05 +0000328.It Cm ChallengeResponseAuthentication
Damien Miller1faa7132006-03-15 11:55:31 +1100329Specifies whether to use challenge-response authentication.
Ben Lindstrom9f049032002-06-21 00:59:05 +0000330The argument to this keyword must be
331.Dq yes
332or
333.Dq no .
334The default is
335.Dq yes .
336.It Cm CheckHostIP
337If this flag is set to
338.Dq yes ,
Damien Miller45ee2b92006-03-15 11:56:18 +1100339.Xr ssh 1
340will additionally check the host IP address in the
Ben Lindstrom9f049032002-06-21 00:59:05 +0000341.Pa known_hosts
342file.
djm@openbsd.org5e678592015-06-02 09:10:40 +0000343This allows ssh to detect if a host key changed due to DNS spoofing
344and will add addresses of destination hosts to
345.Pa ~/.ssh/known_hosts
346in the process, regardless of the setting of
347.Cm StrictHostKeyChecking .
Ben Lindstrom9f049032002-06-21 00:59:05 +0000348If the option is set to
349.Dq no ,
350the check will not be executed.
351The default is
352.Dq yes .
353.It Cm Cipher
354Specifies the cipher to use for encrypting the session
355in protocol version 1.
356Currently,
357.Dq blowfish ,
358.Dq 3des ,
359and
360.Dq des
361are supported.
362.Ar des
363is only supported in the
Damien Miller45ee2b92006-03-15 11:56:18 +1100364.Xr ssh 1
Ben Lindstrom9f049032002-06-21 00:59:05 +0000365client for interoperability with legacy protocol 1 implementations
366that do not support the
367.Ar 3des
Damien Miller495dca32003-04-01 21:42:14 +1000368cipher.
369Its use is strongly discouraged due to cryptographic weaknesses.
Ben Lindstrom9f049032002-06-21 00:59:05 +0000370The default is
371.Dq 3des .
372.It Cm Ciphers
373Specifies the ciphers allowed for protocol version 2
374in order of preference.
375Multiple ciphers must be comma-separated.
Damien Miller0fde8ac2013-11-21 14:12:23 +1100376The supported ciphers are:
377.Pp
Damien Millerc1621c82014-04-20 13:22:46 +1000378.Bl -item -compact -offset indent
379.It
3803des-cbc
381.It
382aes128-cbc
383.It
384aes192-cbc
385.It
386aes256-cbc
387.It
388aes128-ctr
389.It
390aes192-ctr
391.It
392aes256-ctr
393.It
394aes128-gcm@openssh.com
395.It
396aes256-gcm@openssh.com
397.It
398arcfour
399.It
400arcfour128
401.It
402arcfour256
403.It
404blowfish-cbc
405.It
406cast128-cbc
407.It
408chacha20-poly1305@openssh.com
409.El
Damien Miller0fde8ac2013-11-21 14:12:23 +1100410.Pp
Damien Miller45ee2b92006-03-15 11:56:18 +1100411The default is:
Damien Millerc1621c82014-04-20 13:22:46 +1000412.Bd -literal -offset indent
413aes128-ctr,aes192-ctr,aes256-ctr,
Damien Miller1d75abf2013-01-09 16:12:19 +1100414aes128-gcm@openssh.com,aes256-gcm@openssh.com,
Damien Miller0fde8ac2013-11-21 14:12:23 +1100415chacha20-poly1305@openssh.com,
Damien Millerc1621c82014-04-20 13:22:46 +1000416arcfour256,arcfour128,
417aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,
418aes192-cbc,aes256-cbc,arcfour
Ben Lindstrom9f049032002-06-21 00:59:05 +0000419.Ed
Damien Miller0fde8ac2013-11-21 14:12:23 +1100420.Pp
421The list of available ciphers may also be obtained using the
422.Fl Q
423option of
djm@openbsd.org8f6784f2014-12-22 09:05:17 +0000424.Xr ssh 1
425with an argument of
426.Dq cipher .
Ben Lindstrom9f049032002-06-21 00:59:05 +0000427.It Cm ClearAllForwardings
Damien Miller45ee2b92006-03-15 11:56:18 +1100428Specifies that all local, remote, and dynamic port forwardings
Ben Lindstrom9f049032002-06-21 00:59:05 +0000429specified in the configuration files or on the command line be
Damien Miller495dca32003-04-01 21:42:14 +1000430cleared.
431This option is primarily useful when used from the
Damien Miller45ee2b92006-03-15 11:56:18 +1100432.Xr ssh 1
Ben Lindstrom9f049032002-06-21 00:59:05 +0000433command line to clear port forwardings set in
434configuration files, and is automatically set by
435.Xr scp 1
436and
437.Xr sftp 1 .
438The argument must be
439.Dq yes
440or
441.Dq no .
442The default is
443.Dq no .
444.It Cm Compression
445Specifies whether to use compression.
446The argument must be
447.Dq yes
448or
449.Dq no .
450The default is
451.Dq no .
452.It Cm CompressionLevel
453Specifies the compression level to use if compression is enabled.
454The argument must be an integer from 1 (fast) to 9 (slow, best).
455The default level is 6, which is good for most applications.
456The meaning of the values is the same as in
457.Xr gzip 1 .
458Note that this option applies to protocol version 1 only.
459.It Cm ConnectionAttempts
460Specifies the number of tries (one per second) to make before exiting.
461The argument must be an integer.
462This may be useful in scripts if the connection sometimes fails.
463The default is 1.
Damien Millerb78d5eb2003-05-16 11:39:04 +1000464.It Cm ConnectTimeout
Damien Miller45ee2b92006-03-15 11:56:18 +1100465Specifies the timeout (in seconds) used when connecting to the
466SSH server, instead of using the default system TCP timeout.
Damien Millerfbf486b2003-05-23 18:44:23 +1000467This value is used only when the target is down or really unreachable,
468not when it refuses the connection.
Damien Miller0e220db2004-06-15 10:34:08 +1000469.It Cm ControlMaster
470Enables the sharing of multiple sessions over a single network connection.
471When set to
Damien Miller45ee2b92006-03-15 11:56:18 +1100472.Dq yes ,
473.Xr ssh 1
Damien Miller0e220db2004-06-15 10:34:08 +1000474will listen for connections on a control socket specified using the
475.Cm ControlPath
476argument.
477Additional sessions can connect to this socket using the same
478.Cm ControlPath
479with
480.Cm ControlMaster
481set to
482.Dq no
Damien Miller2234bac2004-06-30 22:38:52 +1000483(the default).
Damien Miller713de762005-11-05 15:13:49 +1100484These sessions will try to reuse the master instance's network connection
Damien Millerb3bfbb72005-11-05 15:11:48 +1100485rather than initiating new ones, but will fall back to connecting normally
486if the control socket does not exist, or is not listening.
487.Pp
Damien Miller23f07702004-06-18 01:19:03 +1000488Setting this to
489.Dq ask
Damien Miller45ee2b92006-03-15 11:56:18 +1100490will cause ssh
jmc@openbsd.org78de1672015-03-30 18:28:37 +0000491to listen for control connections, but require confirmation using
492.Xr ssh-askpass 1 .
Damien Millerdadfd4d2005-05-26 12:07:13 +1000493If the
494.Cm ControlPath
Damien Miller45ee2b92006-03-15 11:56:18 +1100495cannot be opened,
496ssh will continue without connecting to a master instance.
Damien Millerd14b1e72005-06-16 13:19:41 +1000497.Pp
Damien Miller13390022005-07-06 09:44:19 +1000498X11 and
Damien Millerfd94fba2005-07-06 09:44:59 +1000499.Xr ssh-agent 1
Damien Miller13390022005-07-06 09:44:19 +1000500forwarding is supported over these multiplexed connections, however the
Darren Tucker63551872005-12-20 16:14:15 +1100501display and agent forwarded will be the one belonging to the master
Damien Millerfd94fba2005-07-06 09:44:59 +1000502connection i.e. it is not possible to forward multiple displays or agents.
Damien Miller13390022005-07-06 09:44:19 +1000503.Pp
Damien Millerd14b1e72005-06-16 13:19:41 +1000504Two additional options allow for opportunistic multiplexing: try to use a
505master connection but fall back to creating a new one if one does not already
506exist.
507These options are:
508.Dq auto
509and
510.Dq autoask .
511The latter requires confirmation like the
512.Dq ask
513option.
Damien Miller0e220db2004-06-15 10:34:08 +1000514.It Cm ControlPath
Damien Miller6476cad2005-06-16 13:18:34 +1000515Specify the path to the control socket used for connection sharing as described
516in the
Damien Miller0e220db2004-06-15 10:34:08 +1000517.Cm ControlMaster
Damien Miller8f74c8f2005-06-26 08:56:03 +1000518section above or the string
519.Dq none
520to disable connection sharing.
Damien Miller6476cad2005-06-16 13:18:34 +1000521In the path,
Damien Millerdfc85fa2011-05-15 08:44:02 +1000522.Ql %L
523will be substituted by the first component of the local host name,
Damien Miller3ec54c72006-03-15 11:30:13 +1100524.Ql %l
Damien Millerdfc85fa2011-05-15 08:44:02 +1000525will be substituted by the local host name (including any domain name),
Damien Miller6476cad2005-06-16 13:18:34 +1000526.Ql %h
527will be substituted by the target host name,
Damien Miller486dd2e2011-05-15 08:47:18 +1000528.Ql %n
529will be substituted by the original target host name
530specified on the command line,
Damien Miller6476cad2005-06-16 13:18:34 +1000531.Ql %p
Damien Miller5c86ebd2013-10-23 16:29:12 +1100532the destination port,
Damien Miller6476cad2005-06-16 13:18:34 +1000533.Ql %r
Damien Miller9c386432014-07-03 21:27:46 +1000534by the remote login username,
Damien Millerdfc85fa2011-05-15 08:44:02 +1000535.Ql %u
536by the username of the user running
Damien Miller9c386432014-07-03 21:27:46 +1000537.Xr ssh 1 , and
Damien Miller0f123412014-07-03 21:28:09 +1000538.Ql \&%C
Damien Miller9c386432014-07-03 21:27:46 +1000539by a hash of the concatenation: %l%h%p%r.
Damien Millerd14b1e72005-06-16 13:19:41 +1000540It is recommended that any
541.Cm ControlPath
542used for opportunistic connection sharing include
djm@openbsd.orgfc302562014-11-10 22:25:49 +0000543at least %h, %p, and %r (or alternatively %C) and be placed in a directory
544that is not writable by other users.
Damien Millerd14b1e72005-06-16 13:19:41 +1000545This ensures that shared connections are uniquely identified.
Damien Millere11e1ea2010-08-03 16:04:46 +1000546.It Cm ControlPersist
547When used in conjunction with
548.Cm ControlMaster ,
549specifies that the master connection should remain open
550in the background (waiting for future client connections)
551after the initial client connection has been closed.
552If set to
553.Dq no ,
554then the master connection will not be placed into the background,
555and will close as soon as the initial client connection is closed.
556If set to
djm@openbsd.orgfc302562014-11-10 22:25:49 +0000557.Dq yes
558or
559.Dq 0 ,
Damien Millere11e1ea2010-08-03 16:04:46 +1000560then the master connection will remain in the background indefinitely
561(until killed or closed via a mechanism such as the
562.Xr ssh 1
563.Dq Fl O No exit
564option).
565If set to a time in seconds, or a time in any of the formats documented in
566.Xr sshd_config 5 ,
567then the backgrounded master connection will automatically terminate
568after it has remained idle (with no client connections) for the
569specified time.
Damien Miller2234bac2004-06-30 22:38:52 +1000570.It Cm DynamicForward
Damien Millere9d001e2006-01-14 10:10:17 +1100571Specifies that a TCP port on the local machine be forwarded
Damien Miller2234bac2004-06-30 22:38:52 +1000572over the secure channel, and the application
573protocol is then used to determine where to connect to from the
574remote machine.
Darren Tuckerc8d64212005-10-03 18:13:42 +1000575.Pp
576The argument must be
577.Sm off
578.Oo Ar bind_address : Oc Ar port .
579.Sm on
Damien Miller7fa96602010-08-05 13:03:13 +1000580IPv6 addresses can be specified by enclosing addresses in square brackets.
Darren Tuckerc8d64212005-10-03 18:13:42 +1000581By default, the local port is bound in accordance with the
582.Cm GatewayPorts
583setting.
584However, an explicit
585.Ar bind_address
586may be used to bind the connection to a specific address.
587The
588.Ar bind_address
589of
590.Dq localhost
591indicates that the listening port be bound for local use only, while an
592empty address or
593.Sq *
594indicates that the port should be available from all interfaces.
595.Pp
Damien Miller2234bac2004-06-30 22:38:52 +1000596Currently the SOCKS4 and SOCKS5 protocols are supported, and
Damien Miller45ee2b92006-03-15 11:56:18 +1100597.Xr ssh 1
Damien Miller2234bac2004-06-30 22:38:52 +1000598will act as a SOCKS server.
599Multiple forwardings may be specified, and
600additional forwardings can be given on the command line.
601Only the superuser can forward privileged ports.
Darren Tucker674f71d2003-06-28 12:33:12 +1000602.It Cm EnableSSHKeysign
603Setting this option to
604.Dq yes
605in the global client configuration file
606.Pa /etc/ssh/ssh_config
607enables the use of the helper program
608.Xr ssh-keysign 8
609during
610.Cm HostbasedAuthentication .
611The argument must be
612.Dq yes
613or
614.Dq no .
615The default is
616.Dq no .
Darren Tuckerf132c672003-10-15 15:58:18 +1000617This option should be placed in the non-hostspecific section.
Darren Tucker674f71d2003-06-28 12:33:12 +1000618See
619.Xr ssh-keysign 8
620for more information.
Ben Lindstrom9f049032002-06-21 00:59:05 +0000621.It Cm EscapeChar
622Sets the escape character (default:
623.Ql ~ ) .
624The escape character can also
625be set on the command line.
626The argument should be a single character,
627.Ql ^
628followed by a letter, or
629.Dq none
630to disable the escape
631character entirely (making the connection transparent for binary
632data).
Darren Tuckere7d4b192006-07-12 22:17:10 +1000633.It Cm ExitOnForwardFailure
634Specifies whether
635.Xr ssh 1
636should terminate the connection if it cannot set up all requested
Darren Tuckerfc5d1882007-08-15 22:20:22 +1000637dynamic, tunnel, local, and remote port forwardings.
Darren Tuckere7d4b192006-07-12 22:17:10 +1000638The argument must be
639.Dq yes
640or
641.Dq no .
642The default is
643.Dq no .
djm@openbsd.orgb79efde2014-12-21 23:12:42 +0000644.It Cm FingerprintHash
645Specifies the hash algorithm used when displaying key fingerprints.
646Valid options are:
647.Dq md5
648and
649.Dq sha256 .
djm@openbsd.orgb79efde2014-12-21 23:12:42 +0000650The default is
651.Dq sha256 .
Ben Lindstrom9f049032002-06-21 00:59:05 +0000652.It Cm ForwardAgent
653Specifies whether the connection to the authentication agent (if any)
654will be forwarded to the remote machine.
655The argument must be
656.Dq yes
657or
658.Dq no .
659The default is
660.Dq no .
Damien Milleraf653042002-09-04 16:40:37 +1000661.Pp
Damien Miller495dca32003-04-01 21:42:14 +1000662Agent forwarding should be enabled with caution.
663Users with the ability to bypass file permissions on the remote host
664(for the agent's Unix-domain socket)
665can access the local agent through the forwarded connection.
666An attacker cannot obtain key material from the agent,
Damien Milleraf653042002-09-04 16:40:37 +1000667however they can perform operations on the keys that enable them to
668authenticate using the identities loaded into the agent.
Ben Lindstrom9f049032002-06-21 00:59:05 +0000669.It Cm ForwardX11
670Specifies whether X11 connections will be automatically redirected
671over the secure channel and
672.Ev DISPLAY
673set.
674The argument must be
675.Dq yes
676or
677.Dq no .
678The default is
679.Dq no .
Damien Milleraf653042002-09-04 16:40:37 +1000680.Pp
Damien Miller495dca32003-04-01 21:42:14 +1000681X11 forwarding should be enabled with caution.
682Users with the ability to bypass file permissions on the remote host
Darren Tucker0a118da2003-10-15 15:54:32 +1000683(for the user's X11 authorization database)
Damien Miller495dca32003-04-01 21:42:14 +1000684can access the local X11 display through the forwarded connection.
Darren Tucker0a118da2003-10-15 15:54:32 +1000685An attacker may then be able to perform activities such as keystroke monitoring
686if the
687.Cm ForwardX11Trusted
688option is also enabled.
Damien Miller1ab6a512010-06-26 10:02:24 +1000689.It Cm ForwardX11Timeout
Damien Millercede1db2010-07-02 13:33:48 +1000690Specify a timeout for untrusted X11 forwarding
691using the format described in the
Damien Millerfecfd112013-07-18 16:11:50 +1000692TIME FORMATS section of
Damien Miller1ab6a512010-06-26 10:02:24 +1000693.Xr sshd_config 5 .
694X11 connections received by
695.Xr ssh 1
696after this time will be refused.
697The default is to disable untrusted X11 forwarding after twenty minutes has
698elapsed.
Darren Tucker0a118da2003-10-15 15:54:32 +1000699.It Cm ForwardX11Trusted
Darren Tuckerdcf6ec42004-05-13 13:03:56 +1000700If this option is set to
Damien Miller45ee2b92006-03-15 11:56:18 +1100701.Dq yes ,
702remote X11 clients will have full access to the original X11 display.
Damien Miller1717fd42005-03-01 21:17:31 +1100703.Pp
Darren Tucker0a118da2003-10-15 15:54:32 +1000704If this option is set to
Damien Miller45ee2b92006-03-15 11:56:18 +1100705.Dq no ,
706remote X11 clients will be considered untrusted and prevented
Darren Tucker0a118da2003-10-15 15:54:32 +1000707from stealing or tampering with data belonging to trusted X11
708clients.
Damien Miller1717fd42005-03-01 21:17:31 +1100709Furthermore, the
710.Xr xauth 1
711token used for the session will be set to expire after 20 minutes.
712Remote clients will be refused access after this time.
Darren Tucker0a118da2003-10-15 15:54:32 +1000713.Pp
714The default is
715.Dq no .
716.Pp
717See the X11 SECURITY extension specification for full details on
718the restrictions imposed on untrusted clients.
Ben Lindstrom9f049032002-06-21 00:59:05 +0000719.It Cm GatewayPorts
720Specifies whether remote hosts are allowed to connect to local
721forwarded ports.
722By default,
Damien Miller45ee2b92006-03-15 11:56:18 +1100723.Xr ssh 1
Damien Miller495dca32003-04-01 21:42:14 +1000724binds local port forwardings to the loopback address.
725This prevents other remote hosts from connecting to forwarded ports.
Ben Lindstrom9f049032002-06-21 00:59:05 +0000726.Cm GatewayPorts
Damien Miller45ee2b92006-03-15 11:56:18 +1100727can be used to specify that ssh
Ben Lindstrom9f049032002-06-21 00:59:05 +0000728should bind local port forwardings to the wildcard address,
729thus allowing remote hosts to connect to forwarded ports.
730The argument must be
731.Dq yes
732or
733.Dq no .
734The default is
735.Dq no .
736.It Cm GlobalKnownHostsFile
Damien Miller295ee632011-05-29 21:42:31 +1000737Specifies one or more files to use for the global
738host key database, separated by whitespace.
739The default is
740.Pa /etc/ssh/ssh_known_hosts ,
741.Pa /etc/ssh/ssh_known_hosts2 .
Darren Tucker0efd1552003-08-26 11:49:55 +1000742.It Cm GSSAPIAuthentication
Damien Millerbaafb982003-12-17 16:32:23 +1100743Specifies whether user authentication based on GSSAPI is allowed.
Damien Millerc2b98272003-09-03 12:13:30 +1000744The default is
Darren Tuckera044f472003-10-15 15:52:03 +1000745.Dq no .
Darren Tucker0efd1552003-08-26 11:49:55 +1000746Note that this option applies to protocol version 2 only.
747.It Cm GSSAPIDelegateCredentials
748Forward (delegate) credentials to the server.
749The default is
750.Dq no .
751Note that this option applies to protocol version 2 only.
Damien Millere1776152005-03-01 21:47:37 +1100752.It Cm HashKnownHosts
753Indicates that
Damien Miller45ee2b92006-03-15 11:56:18 +1100754.Xr ssh 1
Damien Millere1776152005-03-01 21:47:37 +1100755should hash host names and addresses when they are added to
Damien Miller167ea5d2005-05-26 12:04:02 +1000756.Pa ~/.ssh/known_hosts .
Damien Millere1776152005-03-01 21:47:37 +1100757These hashed names may be used normally by
Damien Miller45ee2b92006-03-15 11:56:18 +1100758.Xr ssh 1
Damien Millere1776152005-03-01 21:47:37 +1100759and
Damien Miller45ee2b92006-03-15 11:56:18 +1100760.Xr sshd 8 ,
Damien Millere1776152005-03-01 21:47:37 +1100761but they do not reveal identifying information should the file's contents
762be disclosed.
763The default is
764.Dq no .
Damien Miller858bb7d2006-08-05 11:34:51 +1000765Note that existing names and addresses in known hosts files
766will not be converted automatically,
767but may be manually hashed using
Damien Miller4b42d7f2005-03-01 21:48:35 +1100768.Xr ssh-keygen 1 .
Ben Lindstrom9f049032002-06-21 00:59:05 +0000769.It Cm HostbasedAuthentication
770Specifies whether to try rhosts based authentication with public key
771authentication.
772The argument must be
773.Dq yes
774or
775.Dq no .
776The default is
777.Dq no .
778This option applies to protocol version 2 only and
779is similar to
780.Cm RhostsRSAAuthentication .
djm@openbsd.org46347ed2015-01-30 11:43:14 +0000781.It Cm HostbasedKeyTypes
782Specifies the key types that will be used for hostbased authentication
783as a comma-separated pattern list.
markus@openbsd.org3a1638d2015-07-10 06:21:53 +0000784The default for this option is:
785.Bd -literal -offset 3n
786ecdsa-sha2-nistp256-cert-v01@openssh.com,
787ecdsa-sha2-nistp384-cert-v01@openssh.com,
788ecdsa-sha2-nistp521-cert-v01@openssh.com,
789ssh-ed25519-cert-v01@openssh.com,
790ssh-rsa-cert-v01@openssh.com,
791ecdsa-sha2-nistp256,ecdsa-sha2-nistp384,ecdsa-sha2-nistp521,
792ssh-ed25519,ssh-rsa
793.Ed
794.Pp
djm@openbsd.org46347ed2015-01-30 11:43:14 +0000795The
796.Fl Q
797option of
798.Xr ssh 1
799may be used to list supported key types.
Ben Lindstrom9f049032002-06-21 00:59:05 +0000800.It Cm HostKeyAlgorithms
801Specifies the protocol version 2 host key algorithms
802that the client wants to use in order of preference.
803The default for this option is:
Damien Millereb8b60e2010-08-31 22:41:14 +1000804.Bd -literal -offset 3n
805ecdsa-sha2-nistp256-cert-v01@openssh.com,
806ecdsa-sha2-nistp384-cert-v01@openssh.com,
807ecdsa-sha2-nistp521-cert-v01@openssh.com,
Damien Miller8ba0ead2013-12-18 17:46:27 +1100808ssh-ed25519-cert-v01@openssh.com,
markus@openbsd.org3a1638d2015-07-10 06:21:53 +0000809ssh-rsa-cert-v01@openssh.com,
Damien Millereb8b60e2010-08-31 22:41:14 +1000810ecdsa-sha2-nistp256,ecdsa-sha2-nistp384,ecdsa-sha2-nistp521,
markus@openbsd.org3a1638d2015-07-10 06:21:53 +0000811ssh-ed25519,ssh-rsa
Damien Millereb8b60e2010-08-31 22:41:14 +1000812.Ed
Damien Millerd925dcd2010-12-01 12:21:51 +1100813.Pp
814If hostkeys are known for the destination host then this default is modified
815to prefer their algorithms.
djm@openbsd.org8f6784f2014-12-22 09:05:17 +0000816.Pp
817The list of available key types may also be obtained using the
818.Fl Q
819option of
820.Xr ssh 1
821with an argument of
822.Dq key .
Ben Lindstrom9f049032002-06-21 00:59:05 +0000823.It Cm HostKeyAlias
824Specifies an alias that should be used instead of the
825real host name when looking up or saving the host key
826in the host key database files.
Damien Miller45ee2b92006-03-15 11:56:18 +1100827This option is useful for tunneling SSH connections
Ben Lindstrom9f049032002-06-21 00:59:05 +0000828or for multiple servers running on a single host.
829.It Cm HostName
830Specifies the real host name to log into.
831This can be used to specify nicknames or abbreviations for hosts.
Damien Millerd0244d42010-07-16 13:56:43 +1000832If the hostname contains the character sequence
833.Ql %h ,
Damien Miller486dd2e2011-05-15 08:47:18 +1000834then this will be replaced with the host name specified on the command line
Damien Millerd0244d42010-07-16 13:56:43 +1000835(this is useful for manipulating unqualified names).
Damien Milleref9f13b2014-07-03 21:26:21 +1000836The character sequence
837.Ql %%
838will be replaced by a single
839.Ql %
840character, which may be used when specifying IPv6 link-local addresses.
841.Pp
Damien Miller45ee2b92006-03-15 11:56:18 +1100842The default is the name given on the command line.
Ben Lindstrom9f049032002-06-21 00:59:05 +0000843Numeric IP addresses are also permitted (both on the command line and in
844.Cm HostName
845specifications).
Damien Millerbd394c32004-03-08 23:12:36 +1100846.It Cm IdentitiesOnly
847Specifies that
Damien Miller45ee2b92006-03-15 11:56:18 +1100848.Xr ssh 1
Damien Millerbd394c32004-03-08 23:12:36 +1100849should only use the authentication identity files configured in the
Damien Miller1a812582004-04-20 20:13:32 +1000850.Nm
Damien Millerbd394c32004-03-08 23:12:36 +1100851files,
Damien Miller45ee2b92006-03-15 11:56:18 +1100852even if
853.Xr ssh-agent 1
Damien Millercb6b68b2012-12-03 09:49:52 +1100854or a
855.Cm PKCS11Provider
Damien Millerbd394c32004-03-08 23:12:36 +1100856offers more identities.
857The argument to this keyword must be
858.Dq yes
859or
860.Dq no .
Damien Miller45ee2b92006-03-15 11:56:18 +1100861This option is intended for situations where ssh-agent
Damien Millerbd394c32004-03-08 23:12:36 +1100862offers many different identities.
863The default is
864.Dq no .
Damien Miller957d4e42005-12-13 19:30:45 +1100865.It Cm IdentityFile
sobrado@openbsd.orgf70b22b2014-08-30 15:33:50 +0000866Specifies a file from which the user's DSA, ECDSA, Ed25519 or RSA authentication
Damien Millereb8b60e2010-08-31 22:41:14 +1000867identity is read.
Damien Miller957d4e42005-12-13 19:30:45 +1100868The default is
869.Pa ~/.ssh/identity
870for protocol version 1, and
Damien Millereb8b60e2010-08-31 22:41:14 +1000871.Pa ~/.ssh/id_dsa ,
Damien Miller8ba0ead2013-12-18 17:46:27 +1100872.Pa ~/.ssh/id_ecdsa ,
873.Pa ~/.ssh/id_ed25519
Damien Miller957d4e42005-12-13 19:30:45 +1100874and
Damien Millereb8b60e2010-08-31 22:41:14 +1000875.Pa ~/.ssh/id_rsa
Damien Miller957d4e42005-12-13 19:30:45 +1100876for protocol version 2.
877Additionally, any identities represented by the authentication agent
Damien Miller7f2b4382013-07-18 16:10:29 +1000878will be used for authentication unless
879.Cm IdentitiesOnly
880is set.
Damien Miller5059d8d2010-03-05 21:31:11 +1100881.Xr ssh 1
882will try to load certificate information from the filename obtained by
883appending
884.Pa -cert.pub
885to the path of a specified
886.Cm IdentityFile .
Damien Miller6b1d53c2006-03-31 23:13:21 +1100887.Pp
Damien Miller957d4e42005-12-13 19:30:45 +1100888The file name may use the tilde
Damien Millerc6437cf2006-03-31 23:14:41 +1100889syntax to refer to a user's home directory or one of the following
Damien Miller6b1d53c2006-03-31 23:13:21 +1100890escape characters:
891.Ql %d
892(local user's home directory),
893.Ql %u
894(local user name),
895.Ql %l
896(local host name),
897.Ql %h
898(remote host name) or
Damien Millerdfc61832006-03-31 23:14:57 +1100899.Ql %r
Damien Miller6b1d53c2006-03-31 23:13:21 +1100900(remote user name).
901.Pp
Damien Miller957d4e42005-12-13 19:30:45 +1100902It is possible to have
903multiple identity files specified in configuration files; all these
904identities will be tried in sequence.
Damien Miller6029e072011-06-20 14:22:49 +1000905Multiple
906.Cm IdentityFile
907directives will add to the list of identities tried (this behaviour
908differs from that of other configuration directives).
Damien Miller7f2b4382013-07-18 16:10:29 +1000909.Pp
910.Cm IdentityFile
911may be used in conjunction with
912.Cm IdentitiesOnly
913to select which identities in an agent are offered during authentication.
Darren Tucker63e0df22013-05-16 20:30:31 +1000914.It Cm IgnoreUnknown
915Specifies a pattern-list of unknown options to be ignored if they are
916encountered in configuration parsing.
917This may be used to suppress errors if
918.Nm
919contains options that are unrecognised by
920.Xr ssh 1 .
921It is recommended that
922.Cm IgnoreUnknown
923be listed early in the configuration file as it will not be applied
924to unknown options that appear before it.
Damien Miller0dac6fb2010-11-20 15:19:38 +1100925.It Cm IPQoS
926Specifies the IPv4 type-of-service or DSCP class for connections.
927Accepted values are
928.Dq af11 ,
929.Dq af12 ,
930.Dq af13 ,
Damien Millerf6e758c2011-09-22 21:37:13 +1000931.Dq af21 ,
Damien Miller0dac6fb2010-11-20 15:19:38 +1100932.Dq af22 ,
933.Dq af23 ,
934.Dq af31 ,
935.Dq af32 ,
936.Dq af33 ,
937.Dq af41 ,
938.Dq af42 ,
939.Dq af43 ,
940.Dq cs0 ,
941.Dq cs1 ,
942.Dq cs2 ,
943.Dq cs3 ,
944.Dq cs4 ,
945.Dq cs5 ,
946.Dq cs6 ,
947.Dq cs7 ,
948.Dq ef ,
949.Dq lowdelay ,
950.Dq throughput ,
951.Dq reliability ,
952or a numeric value.
Damien Miller928362d2010-12-26 14:26:45 +1100953This option may take one or two arguments, separated by whitespace.
Damien Miller0dac6fb2010-11-20 15:19:38 +1100954If one argument is specified, it is used as the packet class unconditionally.
955If two values are specified, the first is automatically selected for
956interactive sessions and the second for non-interactive sessions.
957The default is
958.Dq lowdelay
959for interactive sessions and
960.Dq throughput
961for non-interactive sessions.
Damien Millercfb606c2007-10-26 14:24:48 +1000962.It Cm KbdInteractiveAuthentication
963Specifies whether to use keyboard-interactive authentication.
964The argument to this keyword must be
965.Dq yes
966or
967.Dq no .
968The default is
969.Dq yes .
Darren Tucker636ca902004-11-05 20:22:00 +1100970.It Cm KbdInteractiveDevices
971Specifies the list of methods to use in keyboard-interactive authentication.
972Multiple method names must be comma-separated.
973The default is to use the server specified list.
Damien Miller9cfbaec2006-03-15 11:57:55 +1100974The methods available vary depending on what the server supports.
975For an OpenSSH server,
976it may be zero or more of:
977.Dq bsdauth ,
978.Dq pam ,
979and
980.Dq skey .
Damien Millerd5f62bf2010-09-24 22:11:14 +1000981.It Cm KexAlgorithms
982Specifies the available KEX (Key Exchange) algorithms.
983Multiple algorithms must be comma-separated.
Damien Miller7fe2b1f2010-09-24 22:11:53 +1000984The default is:
985.Bd -literal -offset indent
Damien Miller0bd8f152013-11-04 08:55:43 +1100986curve25519-sha256@libssh.org,
Damien Miller7fe2b1f2010-09-24 22:11:53 +1000987ecdh-sha2-nistp256,ecdh-sha2-nistp384,ecdh-sha2-nistp521,
988diffie-hellman-group-exchange-sha256,
Damien Millerc1621c82014-04-20 13:22:46 +1000989diffie-hellman-group-exchange-sha1,
djm@openbsd.orgbdfd29f2015-07-03 03:47:00 +0000990diffie-hellman-group14-sha1
Damien Miller7fe2b1f2010-09-24 22:11:53 +1000991.Ed
djm@openbsd.org8f6784f2014-12-22 09:05:17 +0000992.Pp
993The list of available key exchange algorithms may also be obtained using the
994.Fl Q
995option of
996.Xr ssh 1
997with an argument of
998.Dq kex .
Damien Millerd27b9472005-12-13 19:29:02 +1100999.It Cm LocalCommand
1000Specifies a command to execute on the local machine after successfully
1001connecting to the server.
1002The command string extends to the end of the line, and is executed with
Darren Tucker63b31cb2007-12-02 23:09:30 +11001003the user's shell.
Darren Tuckerf6b01b72008-06-13 04:56:37 +10001004The following escape character substitutions will be performed:
1005.Ql %d
1006(local user's home directory),
1007.Ql %h
1008(remote host name),
1009.Ql %l
1010(local host name),
1011.Ql %n
1012(host name as provided on the command line),
1013.Ql %p
1014(remote port),
1015.Ql %r
1016(remote user name) or
1017.Ql %u
Damien Miller9c386432014-07-03 21:27:46 +10001018(local user name) or
Damien Miller0f123412014-07-03 21:28:09 +10001019.Ql \&%C
Damien Miller9c386432014-07-03 21:27:46 +10001020by a hash of the concatenation: %l%h%p%r.
Darren Tucker78be8c52010-01-08 17:05:59 +11001021.Pp
1022The command is run synchronously and does not have access to the
1023session of the
1024.Xr ssh 1
1025that spawned it.
1026It should not be used for interactive commands.
1027.Pp
Damien Millerd27b9472005-12-13 19:29:02 +11001028This directive is ignored unless
1029.Cm PermitLocalCommand
1030has been enabled.
Ben Lindstrom9f049032002-06-21 00:59:05 +00001031.It Cm LocalForward
Damien Millere9d001e2006-01-14 10:10:17 +11001032Specifies that a TCP port on the local machine be forwarded over
Ben Lindstrom9f049032002-06-21 00:59:05 +00001033the secure channel to the specified host and port from the remote machine.
Darren Tucker5ede2ad2005-03-31 21:31:10 +10001034The first argument must be
Damien Millerf91ee4c2005-03-01 21:24:33 +11001035.Sm off
Darren Tucker5ede2ad2005-03-31 21:31:10 +10001036.Oo Ar bind_address : Oc Ar port
Damien Millerf91ee4c2005-03-01 21:24:33 +11001037.Sm on
Darren Tucker5ede2ad2005-03-31 21:31:10 +10001038and the second argument must be
1039.Ar host : Ns Ar hostport .
Damien Miller7fa96602010-08-05 13:03:13 +10001040IPv6 addresses can be specified by enclosing addresses in square brackets.
Damien Millerf8c55462005-03-02 12:03:05 +11001041Multiple forwardings may be specified, and additional forwardings can be
Damien Millerf91ee4c2005-03-01 21:24:33 +11001042given on the command line.
Ben Lindstrom9f049032002-06-21 00:59:05 +00001043Only the superuser can forward privileged ports.
Damien Millerf91ee4c2005-03-01 21:24:33 +11001044By default, the local port is bound in accordance with the
1045.Cm GatewayPorts
1046setting.
1047However, an explicit
1048.Ar bind_address
1049may be used to bind the connection to a specific address.
1050The
1051.Ar bind_address
1052of
1053.Dq localhost
Damien Millerf8c55462005-03-02 12:03:05 +11001054indicates that the listening port be bound for local use only, while an
1055empty address or
1056.Sq *
Damien Millerf91ee4c2005-03-01 21:24:33 +11001057indicates that the port should be available from all interfaces.
Ben Lindstrom9f049032002-06-21 00:59:05 +00001058.It Cm LogLevel
1059Gives the verbosity level that is used when logging messages from
Damien Miller45ee2b92006-03-15 11:56:18 +11001060.Xr ssh 1 .
Ben Lindstrom9f049032002-06-21 00:59:05 +00001061The possible values are:
Damien Miller45ee2b92006-03-15 11:56:18 +11001062QUIET, FATAL, ERROR, INFO, VERBOSE, DEBUG, DEBUG1, DEBUG2, and DEBUG3.
Damien Miller495dca32003-04-01 21:42:14 +10001063The default is INFO.
1064DEBUG and DEBUG1 are equivalent.
1065DEBUG2 and DEBUG3 each specify higher levels of verbose output.
Ben Lindstrom9f049032002-06-21 00:59:05 +00001066.It Cm MACs
1067Specifies the MAC (message authentication code) algorithms
1068in order of preference.
1069The MAC algorithm is used in protocol version 2
1070for data integrity protection.
1071Multiple algorithms must be comma-separated.
Damien Milleraf43a7a2012-12-12 10:46:31 +11001072The algorithms that contain
1073.Dq -etm
1074calculate the MAC after encryption (encrypt-then-mac).
1075These are considered safer and their use recommended.
Damien Miller45ee2b92006-03-15 11:56:18 +11001076The default is:
Damien Miller5e7c30b2007-06-11 14:06:32 +10001077.Bd -literal -offset indent
Damien Milleraf43a7a2012-12-12 10:46:31 +11001078umac-64-etm@openssh.com,umac-128-etm@openssh.com,
1079hmac-sha2-256-etm@openssh.com,hmac-sha2-512-etm@openssh.com,
Damien Millerc1621c82014-04-20 13:22:46 +10001080umac-64@openssh.com,umac-128@openssh.com,
1081hmac-sha2-256,hmac-sha2-512,
1082hmac-md5-etm@openssh.com,hmac-sha1-etm@openssh.com,
1083hmac-ripemd160-etm@openssh.com,
1084hmac-sha1-96-etm@openssh.com,hmac-md5-96-etm@openssh.com,
1085hmac-md5,hmac-sha1,hmac-ripemd160,
Darren Tuckerecbf14a2012-07-02 18:53:37 +10001086hmac-sha1-96,hmac-md5-96
Damien Miller5e7c30b2007-06-11 14:06:32 +10001087.Ed
djm@openbsd.org8f6784f2014-12-22 09:05:17 +00001088.Pp
1089The list of available MAC algorithms may also be obtained using the
1090.Fl Q
1091option of
1092.Xr ssh 1
1093with an argument of
1094.Dq mac .
Ben Lindstrom9f049032002-06-21 00:59:05 +00001095.It Cm NoHostAuthenticationForLocalhost
1096This option can be used if the home directory is shared across machines.
1097In this case localhost will refer to a different machine on each of
1098the machines and the user will get many warnings about changed host keys.
1099However, this option disables host authentication for localhost.
1100The argument to this keyword must be
1101.Dq yes
1102or
1103.Dq no .
1104The default is to check the host key for localhost.
1105.It Cm NumberOfPasswordPrompts
1106Specifies the number of password prompts before giving up.
1107The argument to this keyword must be an integer.
Damien Miller45ee2b92006-03-15 11:56:18 +11001108The default is 3.
Ben Lindstrom9f049032002-06-21 00:59:05 +00001109.It Cm PasswordAuthentication
1110Specifies whether to use password authentication.
1111The argument to this keyword must be
1112.Dq yes
1113or
1114.Dq no .
1115The default is
1116.Dq yes .
Damien Millerd27b9472005-12-13 19:29:02 +11001117.It Cm PermitLocalCommand
1118Allow local command execution via the
1119.Ic LocalCommand
1120option or using the
Damien Miller4b2319f2005-12-13 19:30:27 +11001121.Ic !\& Ns Ar command
Damien Millerd27b9472005-12-13 19:29:02 +11001122escape sequence in
1123.Xr ssh 1 .
1124The argument must be
1125.Dq yes
1126or
1127.Dq no .
1128The default is
1129.Dq no .
Damien Miller7ea845e2010-02-12 09:21:02 +11001130.It Cm PKCS11Provider
1131Specifies which PKCS#11 provider to use.
Damien Miller8e1ea4e2010-11-20 15:20:10 +11001132The argument to this keyword is the PKCS#11 shared library
Damien Miller7ea845e2010-02-12 09:21:02 +11001133.Xr ssh 1
Damien Millera7618442010-02-12 09:26:02 +11001134should use to communicate with a PKCS#11 token providing the user's
Damien Miller7ea845e2010-02-12 09:21:02 +11001135private RSA key.
Damien Miller957d4e42005-12-13 19:30:45 +11001136.It Cm Port
1137Specifies the port number to connect on the remote host.
Damien Miller45ee2b92006-03-15 11:56:18 +11001138The default is 22.
Ben Lindstrom9f049032002-06-21 00:59:05 +00001139.It Cm PreferredAuthentications
1140Specifies the order in which the client should try protocol 2
Damien Millerfbf486b2003-05-23 18:44:23 +10001141authentication methods.
Darren Tucker1adc2bd2005-03-14 23:14:20 +11001142This allows a client to prefer one method (e.g.\&
Ben Lindstrom9f049032002-06-21 00:59:05 +00001143.Cm keyboard-interactive )
Darren Tucker1adc2bd2005-03-14 23:14:20 +11001144over another method (e.g.\&
Damien Miller544378d2010-04-16 15:52:24 +10001145.Cm password ) .
1146The default is:
1147.Bd -literal -offset indent
1148gssapi-with-mic,hostbased,publickey,
1149keyboard-interactive,password
1150.Ed
Ben Lindstrom9f049032002-06-21 00:59:05 +00001151.It Cm Protocol
1152Specifies the protocol versions
Damien Miller45ee2b92006-03-15 11:56:18 +11001153.Xr ssh 1
Ben Lindstrom9f049032002-06-21 00:59:05 +00001154should support in order of preference.
1155The possible values are
Damien Miller45ee2b92006-03-15 11:56:18 +11001156.Sq 1
Ben Lindstrom9f049032002-06-21 00:59:05 +00001157and
Damien Miller45ee2b92006-03-15 11:56:18 +11001158.Sq 2 .
Ben Lindstrom9f049032002-06-21 00:59:05 +00001159Multiple versions must be comma-separated.
Darren Tuckerbad50762009-10-11 21:51:08 +11001160When this option is set to
Darren Tucker7a4a7652009-10-11 21:51:40 +11001161.Dq 2,1
Darren Tuckerbad50762009-10-11 21:51:08 +11001162.Nm ssh
1163will try version 2 and fall back to version 1
Ben Lindstrom9f049032002-06-21 00:59:05 +00001164if version 2 is not available.
Darren Tuckerbad50762009-10-11 21:51:08 +11001165The default is
Darren Tucker7a4a7652009-10-11 21:51:40 +11001166.Sq 2 .
Ben Lindstrom9f049032002-06-21 00:59:05 +00001167.It Cm ProxyCommand
1168Specifies the command to use to connect to the server.
1169The command
Damien Miller079bac22014-07-09 13:06:25 +10001170string extends to the end of the line, and is executed
1171using the user's shell
1172.Ql exec
1173directive to avoid a lingering shell process.
1174.Pp
Damien Millerc4eddee2010-04-18 08:07:43 +10001175In the command string, any occurrence of
Ben Lindstrom9f049032002-06-21 00:59:05 +00001176.Ql %h
1177will be substituted by the host name to
Damien Millerb1b17042010-04-16 15:54:19 +10001178connect,
Ben Lindstrom9f049032002-06-21 00:59:05 +00001179.Ql %p
Damien Millerc4eddee2010-04-18 08:07:43 +10001180by the port, and
1181.Ql %r
Damien Millerb1b17042010-04-16 15:54:19 +10001182by the remote user name.
Ben Lindstrom9f049032002-06-21 00:59:05 +00001183The command can be basically anything,
1184and should read from its standard input and write to its standard output.
1185It should eventually connect an
1186.Xr sshd 8
1187server running on some machine, or execute
1188.Ic sshd -i
1189somewhere.
1190Host key management will be done using the
1191HostName of the host being connected (defaulting to the name typed by
1192the user).
Damien Miller495dca32003-04-01 21:42:14 +10001193Setting the command to
1194.Dq none
Damien Miller9f1e33a2003-02-24 11:57:32 +11001195disables this option entirely.
Ben Lindstrom9f049032002-06-21 00:59:05 +00001196Note that
1197.Cm CheckHostIP
1198is not available for connects with a proxy command.
1199.Pp
Damien Millerebcfedc2005-05-26 12:13:56 +10001200This directive is useful in conjunction with
1201.Xr nc 1
1202and its proxy support.
Damien Millerdfec2942005-05-26 12:14:32 +10001203For example, the following directive would connect via an HTTP proxy at
Damien Millerebcfedc2005-05-26 12:13:56 +10001204192.0.2.0:
1205.Bd -literal -offset 3n
1206ProxyCommand /usr/bin/nc -X connect -x 192.0.2.0:8080 %h %p
1207.Ed
Damien Miller1262b662013-08-21 02:44:24 +10001208.It Cm ProxyUseFdpass
Damien Millerf2f6c312013-08-21 02:44:58 +10001209Specifies that
Damien Miller1262b662013-08-21 02:44:24 +10001210.Cm ProxyCommand
1211will pass a connected file descriptor back to
Damien Millerf2f6c312013-08-21 02:44:58 +10001212.Xr ssh 1
Damien Miller1262b662013-08-21 02:44:24 +10001213instead of continuing to execute and pass data.
1214The default is
1215.Dq no .
markus@openbsd.org3a1638d2015-07-10 06:21:53 +00001216.It Cm PubkeyAcceptedKeyTypes
1217Specifies the key types that will be used for public key authentication
1218as a comma-separated pattern list.
1219The default for this option is:
1220.Bd -literal -offset 3n
1221ecdsa-sha2-nistp256-cert-v01@openssh.com,
1222ecdsa-sha2-nistp384-cert-v01@openssh.com,
1223ecdsa-sha2-nistp521-cert-v01@openssh.com,
1224ssh-ed25519-cert-v01@openssh.com,
1225ssh-rsa-cert-v01@openssh.com,
1226ecdsa-sha2-nistp256,ecdsa-sha2-nistp384,ecdsa-sha2-nistp521,
1227ssh-ed25519,ssh-rsa
1228.Ed
1229.Pp
1230The
1231.Fl Q
1232option of
1233.Xr ssh 1
1234may be used to list supported key types.
Ben Lindstrom9f049032002-06-21 00:59:05 +00001235.It Cm PubkeyAuthentication
1236Specifies whether to try public key authentication.
1237The argument to this keyword must be
1238.Dq yes
1239or
1240.Dq no .
1241The default is
1242.Dq yes .
1243This option applies to protocol version 2 only.
Darren Tucker62388b22006-01-20 11:31:47 +11001244.It Cm RekeyLimit
1245Specifies the maximum amount of data that may be transmitted before the
Darren Tuckerc53c2af2013-05-16 20:28:16 +10001246session key is renegotiated, optionally followed a maximum amount of
1247time that may pass before the session key is renegotiated.
1248The first argument is specified in bytes and may have a suffix of
Damien Millerddfddf12006-01-31 21:39:03 +11001249.Sq K ,
1250.Sq M ,
Darren Tucker62388b22006-01-20 11:31:47 +11001251or
Damien Millerddfddf12006-01-31 21:39:03 +11001252.Sq G
Darren Tucker62388b22006-01-20 11:31:47 +11001253to indicate Kilobytes, Megabytes, or Gigabytes, respectively.
1254The default is between
Damien Miller45ee2b92006-03-15 11:56:18 +11001255.Sq 1G
Darren Tucker62388b22006-01-20 11:31:47 +11001256and
Damien Miller45ee2b92006-03-15 11:56:18 +11001257.Sq 4G ,
Darren Tucker62388b22006-01-20 11:31:47 +11001258depending on the cipher.
Darren Tuckerc53c2af2013-05-16 20:28:16 +10001259The optional second value is specified in seconds and may use any of the
1260units documented in the
Damien Millerfecfd112013-07-18 16:11:50 +10001261TIME FORMATS section of
Darren Tuckerc53c2af2013-05-16 20:28:16 +10001262.Xr sshd_config 5 .
1263The default value for
1264.Cm RekeyLimit
1265is
1266.Dq default none ,
1267which means that rekeying is performed after the cipher's default amount
1268of data has been sent or received and no time based rekeying is done.
Damien Millerddfddf12006-01-31 21:39:03 +11001269This option applies to protocol version 2 only.
Ben Lindstrom9f049032002-06-21 00:59:05 +00001270.It Cm RemoteForward
Damien Millere9d001e2006-01-14 10:10:17 +11001271Specifies that a TCP port on the remote machine be forwarded over
Ben Lindstrom9f049032002-06-21 00:59:05 +00001272the secure channel to the specified host and port from the local machine.
Darren Tucker5ede2ad2005-03-31 21:31:10 +10001273The first argument must be
Damien Millerf91ee4c2005-03-01 21:24:33 +11001274.Sm off
Darren Tucker5ede2ad2005-03-31 21:31:10 +10001275.Oo Ar bind_address : Oc Ar port
Damien Millerf91ee4c2005-03-01 21:24:33 +11001276.Sm on
Darren Tucker5ede2ad2005-03-31 21:31:10 +10001277and the second argument must be
1278.Ar host : Ns Ar hostport .
Damien Miller7fa96602010-08-05 13:03:13 +10001279IPv6 addresses can be specified by enclosing addresses in square brackets.
Ben Lindstrom9f049032002-06-21 00:59:05 +00001280Multiple forwardings may be specified, and additional
1281forwardings can be given on the command line.
Damien Millerde7532e2008-11-03 19:24:45 +11001282Privileged ports can be forwarded only when
1283logging in as root on the remote machine.
Damien Millere379e102009-02-14 16:34:39 +11001284.Pp
Damien Miller85c6d8a2009-02-14 16:34:21 +11001285If the
1286.Ar port
1287argument is
1288.Ql 0 ,
1289the listen port will be dynamically allocated on the server and reported
1290to the client at run time.
Damien Millerf91ee4c2005-03-01 21:24:33 +11001291.Pp
1292If the
1293.Ar bind_address
1294is not specified, the default is to only bind to loopback addresses.
1295If the
1296.Ar bind_address
1297is
1298.Ql *
1299or an empty string, then the forwarding is requested to listen on all
1300interfaces.
1301Specifying a remote
1302.Ar bind_address
Damien Millerf8c55462005-03-02 12:03:05 +11001303will only succeed if the server's
1304.Cm GatewayPorts
Damien Millerf91ee4c2005-03-01 21:24:33 +11001305option is enabled (see
Damien Millerf8c55462005-03-02 12:03:05 +11001306.Xr sshd_config 5 ) .
Damien Miller21771e22011-05-15 08:45:50 +10001307.It Cm RequestTTY
1308Specifies whether to request a pseudo-tty for the session.
1309The argument may be one of:
1310.Dq no
1311(never request a TTY),
1312.Dq yes
1313(always request a TTY when standard input is a TTY),
1314.Dq force
1315(always request a TTY) or
1316.Dq auto
1317(request a TTY when opening a login session).
1318This option mirrors the
1319.Fl t
1320and
1321.Fl T
1322flags for
1323.Xr ssh 1 .
djm@openbsd.org5e39a492014-12-04 02:24:32 +00001324.It Cm RevokedHostKeys
1325Specifies revoked host public keys.
1326Keys listed in this file will be refused for host authentication.
1327Note that if this file does not exist or is not readable,
1328then host authentication will be refused for all hosts.
1329Keys may be specified as a text file, listing one public key per line, or as
1330an OpenSSH Key Revocation List (KRL) as generated by
1331.Xr ssh-keygen 1 .
1332For more information on KRLs, see the KEY REVOCATION LISTS section in
1333.Xr ssh-keygen 1 .
Ben Lindstrom9f049032002-06-21 00:59:05 +00001334.It Cm RhostsRSAAuthentication
1335Specifies whether to try rhosts based authentication with RSA host
1336authentication.
1337The argument must be
1338.Dq yes
1339or
1340.Dq no .
1341The default is
1342.Dq no .
1343This option applies to protocol version 1 only and requires
Damien Miller45ee2b92006-03-15 11:56:18 +11001344.Xr ssh 1
Ben Lindstrom9f049032002-06-21 00:59:05 +00001345to be setuid root.
1346.It Cm RSAAuthentication
1347Specifies whether to try RSA authentication.
1348The argument to this keyword must be
1349.Dq yes
1350or
1351.Dq no .
1352RSA authentication will only be
1353attempted if the identity file exists, or an authentication agent is
1354running.
1355The default is
1356.Dq yes .
1357Note that this option applies to protocol version 1 only.
Darren Tucker46bc0752004-05-02 22:11:30 +10001358.It Cm SendEnv
1359Specifies what variables from the local
1360.Xr environ 7
1361should be sent to the server.
Damien Miller45ee2b92006-03-15 11:56:18 +11001362Note that environment passing is only supported for protocol 2.
1363The server must also support it, and the server must be configured to
Darren Tucker1e0c9bf2004-05-02 22:12:48 +10001364accept these environment variables.
dtucker@openbsd.org85b96ef2015-04-28 10:17:58 +00001365Note that the
1366.Ev TERM
jmc@openbsd.orgc1d5bcf2015-04-28 13:47:38 +00001367environment variable is always sent whenever a
dtucker@openbsd.org85b96ef2015-04-28 10:17:58 +00001368pseudo-terminal is requested as it is required by the protocol.
Darren Tucker46bc0752004-05-02 22:11:30 +10001369Refer to
1370.Cm AcceptEnv
1371in
1372.Xr sshd_config 5
1373for how to configure the server.
Damien Miller6def5512006-03-15 11:54:05 +11001374Variables are specified by name, which may contain wildcard characters.
Darren Tucker1e0c9bf2004-05-02 22:12:48 +10001375Multiple environment variables may be separated by whitespace or spread
Darren Tucker46bc0752004-05-02 22:11:30 +10001376across multiple
1377.Cm SendEnv
1378directives.
1379The default is not to send any environment variables.
Damien Millerf54a4b92006-03-15 11:54:36 +11001380.Pp
1381See
1382.Sx PATTERNS
1383for more information on patterns.
Damien Miller509b0102003-12-17 16:33:10 +11001384.It Cm ServerAliveCountMax
Damien Millerb7977702006-01-03 18:47:31 +11001385Sets the number of server alive messages (see below) which may be
Damien Miller509b0102003-12-17 16:33:10 +11001386sent without
Damien Miller45ee2b92006-03-15 11:56:18 +11001387.Xr ssh 1
Damien Miller509b0102003-12-17 16:33:10 +11001388receiving any messages back from the server.
1389If this threshold is reached while server alive messages are being sent,
Damien Miller45ee2b92006-03-15 11:56:18 +11001390ssh will disconnect from the server, terminating the session.
Damien Miller509b0102003-12-17 16:33:10 +11001391It is important to note that the use of server alive messages is very
1392different from
1393.Cm TCPKeepAlive
1394(below).
1395The server alive messages are sent through the encrypted channel
1396and therefore will not be spoofable.
1397The TCP keepalive option enabled by
1398.Cm TCPKeepAlive
1399is spoofable.
1400The server alive mechanism is valuable when the client or
1401server depend on knowing when a connection has become inactive.
1402.Pp
1403The default value is 3.
1404If, for example,
1405.Cm ServerAliveInterval
Damien Miller45ee2b92006-03-15 11:56:18 +11001406(see below) is set to 15 and
Damien Miller509b0102003-12-17 16:33:10 +11001407.Cm ServerAliveCountMax
Damien Miller45ee2b92006-03-15 11:56:18 +11001408is left at the default, if the server becomes unresponsive,
1409ssh will disconnect after approximately 45 seconds.
Damien Millercc3e8ba2006-03-15 12:06:55 +11001410This option applies to protocol version 2 only.
Damien Miller957d4e42005-12-13 19:30:45 +11001411.It Cm ServerAliveInterval
1412Sets a timeout interval in seconds after which if no data has been received
1413from the server,
Damien Miller45ee2b92006-03-15 11:56:18 +11001414.Xr ssh 1
Damien Miller957d4e42005-12-13 19:30:45 +11001415will send a message through the encrypted
1416channel to request a response from the server.
1417The default
1418is 0, indicating that these messages will not be sent to the server.
1419This option applies to protocol version 2 only.
Damien Miller7acefbb2014-07-18 14:11:24 +10001420.It Cm StreamLocalBindMask
1421Sets the octal file creation mode mask
1422.Pq umask
1423used when creating a Unix-domain socket file for local or remote
1424port forwarding.
1425This option is only used for port forwarding to a Unix-domain socket file.
1426.Pp
1427The default value is 0177, which creates a Unix-domain socket file that is
1428readable and writable only by the owner.
1429Note that not all operating systems honor the file mode on Unix-domain
1430socket files.
1431.It Cm StreamLocalBindUnlink
1432Specifies whether to remove an existing Unix-domain socket file for local
1433or remote port forwarding before creating a new one.
1434If the socket file already exists and
1435.Cm StreamLocalBindUnlink
1436is not enabled,
1437.Nm ssh
1438will be unable to forward the port to the Unix-domain socket file.
1439This option is only used for port forwarding to a Unix-domain socket file.
1440.Pp
1441The argument must be
1442.Dq yes
1443or
1444.Dq no .
1445The default is
1446.Dq no .
Ben Lindstrom9f049032002-06-21 00:59:05 +00001447.It Cm StrictHostKeyChecking
1448If this flag is set to
1449.Dq yes ,
Damien Miller45ee2b92006-03-15 11:56:18 +11001450.Xr ssh 1
Ben Lindstrom9f049032002-06-21 00:59:05 +00001451will never automatically add host keys to the
Damien Miller167ea5d2005-05-26 12:04:02 +10001452.Pa ~/.ssh/known_hosts
Ben Lindstrom9f049032002-06-21 00:59:05 +00001453file, and refuses to connect to hosts whose host key has changed.
1454This provides maximum protection against trojan horse attacks,
Damien Miller45ee2b92006-03-15 11:56:18 +11001455though it can be annoying when the
Ben Lindstrom9f049032002-06-21 00:59:05 +00001456.Pa /etc/ssh/ssh_known_hosts
Damien Miller45ee2b92006-03-15 11:56:18 +11001457file is poorly maintained or when connections to new hosts are
Ben Lindstrom9f049032002-06-21 00:59:05 +00001458frequently made.
1459This option forces the user to manually
1460add all new hosts.
1461If this flag is set to
1462.Dq no ,
Damien Miller45ee2b92006-03-15 11:56:18 +11001463ssh will automatically add new host keys to the
Ben Lindstrom9f049032002-06-21 00:59:05 +00001464user known hosts files.
1465If this flag is set to
1466.Dq ask ,
1467new host keys
1468will be added to the user known host files only after the user
1469has confirmed that is what they really want to do, and
Damien Miller45ee2b92006-03-15 11:56:18 +11001470ssh will refuse to connect to hosts whose host key has changed.
Ben Lindstrom9f049032002-06-21 00:59:05 +00001471The host keys of
1472known hosts will be verified automatically in all cases.
1473The argument must be
1474.Dq yes ,
Damien Miller45ee2b92006-03-15 11:56:18 +11001475.Dq no ,
Ben Lindstrom9f049032002-06-21 00:59:05 +00001476or
1477.Dq ask .
1478The default is
1479.Dq ask .
Damien Miller12c150e2003-12-17 16:31:10 +11001480.It Cm TCPKeepAlive
1481Specifies whether the system should send TCP keepalive messages to the
1482other side.
1483If they are sent, death of the connection or crash of one
1484of the machines will be properly noticed.
1485However, this means that
1486connections will die if the route is down temporarily, and some people
1487find it annoying.
1488.Pp
1489The default is
1490.Dq yes
1491(to send TCP keepalive messages), and the client will notice
1492if the network goes down or the remote host dies.
1493This is important in scripts, and many users want it too.
1494.Pp
1495To disable TCP keepalive messages, the value should be set to
1496.Dq no .
Damien Millerd27b9472005-12-13 19:29:02 +11001497.It Cm Tunnel
Damien Miller991dba42006-07-10 20:16:27 +10001498Request
Damien Millerd27b9472005-12-13 19:29:02 +11001499.Xr tun 4
Damien Miller7746c392005-12-13 19:33:37 +11001500device forwarding between the client and the server.
Damien Millerd27b9472005-12-13 19:29:02 +11001501The argument must be
Damien Miller7b58e802005-12-13 19:33:19 +11001502.Dq yes ,
Damien Miller991dba42006-07-10 20:16:27 +10001503.Dq point-to-point
1504(layer 3),
1505.Dq ethernet
1506(layer 2),
Damien Millerd27b9472005-12-13 19:29:02 +11001507or
1508.Dq no .
Damien Miller991dba42006-07-10 20:16:27 +10001509Specifying
1510.Dq yes
1511requests the default tunnel mode, which is
1512.Dq point-to-point .
Damien Millerd27b9472005-12-13 19:29:02 +11001513The default is
1514.Dq no .
1515.It Cm TunnelDevice
Damien Miller991dba42006-07-10 20:16:27 +10001516Specifies the
Damien Millerd27b9472005-12-13 19:29:02 +11001517.Xr tun 4
Damien Miller991dba42006-07-10 20:16:27 +10001518devices to open on the client
1519.Pq Ar local_tun
1520and the server
1521.Pq Ar remote_tun .
1522.Pp
1523The argument must be
1524.Sm off
1525.Ar local_tun Op : Ar remote_tun .
1526.Sm on
1527The devices may be specified by numerical ID or the keyword
1528.Dq any ,
1529which uses the next available tunnel device.
1530If
1531.Ar remote_tun
1532is not specified, it defaults to
1533.Dq any .
1534The default is
1535.Dq any:any .
djm@openbsd.org1d1092b2015-01-26 12:16:36 +00001536.It Cm UpdateHostKeys
djm@openbsd.org8d4f8722015-01-26 03:04:45 +00001537Specifies whether
1538.Xr ssh 1
1539should accept notifications of additional hostkeys from the server sent
1540after authentication has completed and add them to
1541.Cm UserKnownHostsFile .
1542The argument must be
djm@openbsd.org523463a2015-02-16 22:13:32 +00001543.Dq yes ,
djm@openbsd.org15ad7502015-02-02 07:41:40 +00001544.Dq no
djm@openbsd.org523463a2015-02-16 22:13:32 +00001545(the default) or
1546.Dq ask .
djm@openbsd.org8d4f8722015-01-26 03:04:45 +00001547Enabling this option allows learning alternate hostkeys for a server
djm@openbsd.org1d1092b2015-01-26 12:16:36 +00001548and supports graceful key rotation by allowing a server to send replacement
1549public keys before old ones are removed.
djm@openbsd.org8d4f8722015-01-26 03:04:45 +00001550Additional hostkeys are only accepted if the key used to authenticate the
1551host was already trusted or explicity accepted by the user.
djm@openbsd.org523463a2015-02-16 22:13:32 +00001552If
1553.Cm UpdateHostKeys
1554is set to
1555.Dq ask ,
1556then the user is asked to confirm the modifications to the known_hosts file.
djm@openbsd.org44732de2015-02-20 22:17:21 +00001557Confirmation is currently incompatible with
1558.Cm ControlPersist ,
1559and will be disabled if it is enabled.
djm@openbsd.org8d4f8722015-01-26 03:04:45 +00001560.Pp
1561Presently, only
1562.Xr sshd 8
1563from OpenSSH 6.8 and greater support the
1564.Dq hostkeys@openssh.com
1565protocol extension used to inform the client of all the server's hostkeys.
Damien Millere8cd7412005-12-24 14:55:47 +11001566.It Cm UsePrivilegedPort
1567Specifies whether to use a privileged port for outgoing connections.
1568The argument must be
1569.Dq yes
1570or
1571.Dq no .
1572The default is
1573.Dq no .
1574If set to
Damien Miller45ee2b92006-03-15 11:56:18 +11001575.Dq yes ,
1576.Xr ssh 1
Damien Millere8cd7412005-12-24 14:55:47 +11001577must be setuid root.
1578Note that this option must be set to
1579.Dq yes
1580for
1581.Cm RhostsRSAAuthentication
1582with older servers.
Ben Lindstrom9f049032002-06-21 00:59:05 +00001583.It Cm User
1584Specifies the user to log in as.
1585This can be useful when a different user name is used on different machines.
1586This saves the trouble of
1587having to remember to give the user name on the command line.
1588.It Cm UserKnownHostsFile
Damien Miller295ee632011-05-29 21:42:31 +10001589Specifies one or more files to use for the user
1590host key database, separated by whitespace.
1591The default is
1592.Pa ~/.ssh/known_hosts ,
1593.Pa ~/.ssh/known_hosts2 .
Damien Miller37876e92003-05-15 10:19:46 +10001594.It Cm VerifyHostKeyDNS
1595Specifies whether to verify the remote key using DNS and SSHFP resource
1596records.
Damien Miller150b5572003-11-17 21:19:29 +11001597If this option is set to
1598.Dq yes ,
Damien Millerfe448472003-11-17 21:19:49 +11001599the client will implicitly trust keys that match a secure fingerprint
Damien Miller150b5572003-11-17 21:19:29 +11001600from DNS.
1601Insecure fingerprints will be handled as if this option was set to
1602.Dq ask .
1603If this option is set to
1604.Dq ask ,
1605information on fingerprint match will be displayed, but the user will still
1606need to confirm new host keys according to the
1607.Cm StrictHostKeyChecking
1608option.
1609The argument must be
1610.Dq yes ,
Damien Miller45ee2b92006-03-15 11:56:18 +11001611.Dq no ,
Damien Millerfe448472003-11-17 21:19:49 +11001612or
1613.Dq ask .
Damien Miller37876e92003-05-15 10:19:46 +10001614The default is
1615.Dq no .
Damien Millereacbb4f2003-06-02 19:10:41 +10001616Note that this option applies to protocol version 2 only.
Damien Miller45ee2b92006-03-15 11:56:18 +11001617.Pp
Damien Millerfecfd112013-07-18 16:11:50 +10001618See also VERIFYING HOST KEYS in
Damien Miller45ee2b92006-03-15 11:56:18 +11001619.Xr ssh 1 .
Damien Miller10288242008-06-30 00:04:03 +10001620.It Cm VisualHostKey
1621If this flag is set to
1622.Dq yes ,
1623an ASCII art representation of the remote host key fingerprint is
djm@openbsd.orgb79efde2014-12-21 23:12:42 +00001624printed in addition to the fingerprint string at login and
Damien Millera414cd32008-11-03 19:25:21 +11001625for unknown host keys.
Damien Miller10288242008-06-30 00:04:03 +10001626If this flag is set to
1627.Dq no ,
Damien Millera414cd32008-11-03 19:25:21 +11001628no fingerprint strings are printed at login and
djm@openbsd.orgb79efde2014-12-21 23:12:42 +00001629only the fingerprint string will be printed for unknown host keys.
Damien Miller10288242008-06-30 00:04:03 +10001630The default is
1631.Dq no .
Ben Lindstrom9f049032002-06-21 00:59:05 +00001632.It Cm XAuthLocation
Damien Miller05913ba2002-09-04 16:51:03 +10001633Specifies the full pathname of the
Ben Lindstrom9f049032002-06-21 00:59:05 +00001634.Xr xauth 1
1635program.
1636The default is
1637.Pa /usr/X11R6/bin/xauth .
1638.El
Damien Millerb5282c22006-03-15 11:59:08 +11001639.Sh PATTERNS
1640A
1641.Em pattern
1642consists of zero or more non-whitespace characters,
1643.Sq *
1644(a wildcard that matches zero or more characters),
1645or
1646.Sq ?\&
1647(a wildcard that matches exactly one character).
1648For example, to specify a set of declarations for any host in the
1649.Dq .co.uk
1650set of domains,
1651the following pattern could be used:
1652.Pp
1653.Dl Host *.co.uk
1654.Pp
1655The following pattern
1656would match any host in the 192.168.0.[0-9] network range:
1657.Pp
1658.Dl Host 192.168.0.?
1659.Pp
1660A
1661.Em pattern-list
1662is a comma-separated list of patterns.
1663Patterns within pattern-lists may be negated
1664by preceding them with an exclamation mark
1665.Pq Sq !\& .
1666For example,
Damien Miller51682fa2013-10-17 11:48:31 +11001667to allow a key to be used from anywhere within an organization
Damien Millerb5282c22006-03-15 11:59:08 +11001668except from the
1669.Dq dialup
1670pool,
1671the following entry (in authorized_keys) could be used:
1672.Pp
1673.Dl from=\&"!*.dialup.example.com,*.example.com\&"
Ben Lindstrom9f049032002-06-21 00:59:05 +00001674.Sh FILES
1675.Bl -tag -width Ds
Damien Miller167ea5d2005-05-26 12:04:02 +10001676.It Pa ~/.ssh/config
Ben Lindstrom9f049032002-06-21 00:59:05 +00001677This is the per-user configuration file.
1678The format of this file is described above.
Damien Miller45ee2b92006-03-15 11:56:18 +11001679This file is used by the SSH client.
Damien Millerc970cb92004-04-20 20:12:53 +10001680Because of the potential for abuse, this file must have strict permissions:
1681read/write for the user, and not accessible by others.
Ben Lindstrom9f049032002-06-21 00:59:05 +00001682.It Pa /etc/ssh/ssh_config
1683Systemwide configuration file.
1684This file provides defaults for those
1685values that are not specified in the user's configuration file, and
1686for those users who do not have a configuration file.
1687This file must be world-readable.
1688.El
Damien Millerf1ce5052003-06-11 22:04:39 +10001689.Sh SEE ALSO
1690.Xr ssh 1
Ben Lindstrom9f049032002-06-21 00:59:05 +00001691.Sh AUTHORS
1692OpenSSH is a derivative of the original and free
1693ssh 1.2.12 release by Tatu Ylonen.
1694Aaron Campbell, Bob Beck, Markus Friedl, Niels Provos,
1695Theo de Raadt and Dug Song
1696removed many bugs, re-added newer features and
1697created OpenSSH.
1698Markus Friedl contributed the support for SSH
1699protocol versions 1.5 and 2.0.