blob: 2f5410281184a00720d21602b49eefeefdf67bff [file] [log] [blame]
Ben Lindstrom9f049032002-06-21 00:59:05 +00001.\" -*- nroff -*-
2.\"
3.\" Author: Tatu Ylonen <ylo@cs.hut.fi>
4.\" Copyright (c) 1995 Tatu Ylonen <ylo@cs.hut.fi>, Espoo, Finland
5.\" All rights reserved
6.\"
7.\" As far as I am concerned, the code I have written for this software
8.\" can be used freely for any purpose. Any derived versions of this
9.\" software must be clearly marked as such, and if the derived work is
10.\" incompatible with the protocol description in the RFC file, it must be
11.\" called by a name other than "ssh" or "Secure Shell".
12.\"
13.\" Copyright (c) 1999,2000 Markus Friedl. All rights reserved.
14.\" Copyright (c) 1999 Aaron Campbell. All rights reserved.
15.\" Copyright (c) 1999 Theo de Raadt. All rights reserved.
16.\"
17.\" Redistribution and use in source and binary forms, with or without
18.\" modification, are permitted provided that the following conditions
19.\" are met:
20.\" 1. Redistributions of source code must retain the above copyright
21.\" notice, this list of conditions and the following disclaimer.
22.\" 2. Redistributions in binary form must reproduce the above copyright
23.\" notice, this list of conditions and the following disclaimer in the
24.\" documentation and/or other materials provided with the distribution.
25.\"
26.\" THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR
27.\" IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES
28.\" OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED.
29.\" IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT,
30.\" INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
31.\" NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
32.\" DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
33.\" THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
34.\" (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF
35.\" THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
36.\"
Damien Millerc6db99e2010-03-05 10:41:45 +110037.\" $OpenBSD: sshd_config.5,v 1.120 2010/03/04 23:17:25 djm Exp $
Damien Miller1aed65e2010-03-04 21:53:35 +110038.Dd $Mdocdate: March 4 2010 $
Ben Lindstrom9f049032002-06-21 00:59:05 +000039.Dt SSHD_CONFIG 5
40.Os
41.Sh NAME
42.Nm sshd_config
43.Nd OpenSSH SSH daemon configuration file
44.Sh SYNOPSIS
Damien Millerd94fc722007-01-05 16:29:30 +110045.Nm /etc/ssh/sshd_config
Ben Lindstrom9f049032002-06-21 00:59:05 +000046.Sh DESCRIPTION
Damien Millerf4f22b52006-03-15 11:57:25 +110047.Xr sshd 8
Ben Lindstrom9f049032002-06-21 00:59:05 +000048reads configuration data from
49.Pa /etc/ssh/sshd_config
50(or the file specified with
51.Fl f
52on the command line).
53The file contains keyword-argument pairs, one per line.
54Lines starting with
55.Ql #
56and empty lines are interpreted as comments.
Damien Miller306d1182006-03-15 12:05:59 +110057Arguments may optionally be enclosed in double quotes
58.Pq \&"
59in order to represent arguments containing spaces.
Ben Lindstrom9f049032002-06-21 00:59:05 +000060.Pp
61The possible
62keywords and their meanings are as follows (note that
63keywords are case-insensitive and arguments are case-sensitive):
64.Bl -tag -width Ds
Darren Tucker46bc0752004-05-02 22:11:30 +100065.It Cm AcceptEnv
66Specifies what environment variables sent by the client will be copied into
67the session's
68.Xr environ 7 .
69See
70.Cm SendEnv
71in
72.Xr ssh_config 5
73for how to configure the client.
Darren Tucker1e0c9bf2004-05-02 22:12:48 +100074Note that environment passing is only supported for protocol 2.
Darren Tucker46bc0752004-05-02 22:11:30 +100075Variables are specified by name, which may contain the wildcard characters
Damien Miller208f1ed2006-03-15 11:56:03 +110076.Ql *
Darren Tucker46bc0752004-05-02 22:11:30 +100077and
78.Ql \&? .
Darren Tucker1e0c9bf2004-05-02 22:12:48 +100079Multiple environment variables may be separated by whitespace or spread
Darren Tucker46bc0752004-05-02 22:11:30 +100080across multiple
81.Cm AcceptEnv
82directives.
Darren Tucker1e0c9bf2004-05-02 22:12:48 +100083Be warned that some environment variables could be used to bypass restricted
Darren Tucker46bc0752004-05-02 22:11:30 +100084user environments.
85For this reason, care should be taken in the use of this directive.
86The default is not to accept any environment variables.
Darren Tucker0f383232005-01-20 10:57:56 +110087.It Cm AddressFamily
88Specifies which address family should be used by
Damien Millerf4f22b52006-03-15 11:57:25 +110089.Xr sshd 8 .
Darren Tucker0f383232005-01-20 10:57:56 +110090Valid arguments are
91.Dq any ,
92.Dq inet
Damien Miller5b0d63f2006-03-15 11:56:56 +110093(use IPv4 only), or
Darren Tucker0f383232005-01-20 10:57:56 +110094.Dq inet6
95(use IPv6 only).
96The default is
97.Dq any .
Damien Millere9890192008-05-19 14:59:02 +100098.It Cm AllowAgentForwarding
99Specifies whether
100.Xr ssh-agent 1
101forwarding is permitted.
102The default is
103.Dq yes .
104Note that disabling agent forwarding does not improve security
105unless users are also denied shell access, as they can always install
106their own forwarders.
Ben Lindstrom9f049032002-06-21 00:59:05 +0000107.It Cm AllowGroups
108This keyword can be followed by a list of group name patterns, separated
109by spaces.
110If specified, login is allowed only for users whose primary
111group or supplementary group list matches one of the patterns.
Ben Lindstrom9f049032002-06-21 00:59:05 +0000112Only group names are valid; a numerical group ID is not recognized.
113By default, login is allowed for all groups.
Damien Millerac73e512006-03-15 11:58:49 +1100114The allow/deny directives are processed in the following order:
115.Cm DenyUsers ,
116.Cm AllowUsers ,
117.Cm DenyGroups ,
118and finally
119.Cm AllowGroups .
Damien Miller0c2079d2006-03-15 11:54:21 +1100120.Pp
121See
122.Sx PATTERNS
123in
124.Xr ssh_config 5
125for more information on patterns.
Ben Lindstrom9f049032002-06-21 00:59:05 +0000126.It Cm AllowTcpForwarding
127Specifies whether TCP forwarding is permitted.
128The default is
129.Dq yes .
130Note that disabling TCP forwarding does not improve security unless
131users are also denied shell access, as they can always install their
132own forwarders.
Ben Lindstrom9f049032002-06-21 00:59:05 +0000133.It Cm AllowUsers
134This keyword can be followed by a list of user name patterns, separated
135by spaces.
Damien Miller5a93add2003-01-24 11:34:52 +1100136If specified, login is allowed only for user names that
Ben Lindstrom9f049032002-06-21 00:59:05 +0000137match one of the patterns.
Ben Lindstrom9f049032002-06-21 00:59:05 +0000138Only user names are valid; a numerical user ID is not recognized.
139By default, login is allowed for all users.
140If the pattern takes the form USER@HOST then USER and HOST
141are separately checked, restricting logins to particular
142users from particular hosts.
Damien Millerac73e512006-03-15 11:58:49 +1100143The allow/deny directives are processed in the following order:
144.Cm DenyUsers ,
145.Cm AllowUsers ,
146.Cm DenyGroups ,
147and finally
148.Cm AllowGroups .
Damien Miller0c2079d2006-03-15 11:54:21 +1100149.Pp
150See
151.Sx PATTERNS
152in
153.Xr ssh_config 5
154for more information on patterns.
Ben Lindstrom9f049032002-06-21 00:59:05 +0000155.It Cm AuthorizedKeysFile
156Specifies the file that contains the public keys that can be used
157for user authentication.
158.Cm AuthorizedKeysFile
159may contain tokens of the form %T which are substituted during connection
Damien Miller5b0d63f2006-03-15 11:56:56 +1100160setup.
Damien Millerfbf486b2003-05-23 18:44:23 +1000161The following tokens are defined: %% is replaced by a literal '%',
Damien Miller5b0d63f2006-03-15 11:56:56 +1100162%h is replaced by the home directory of the user being authenticated, and
Ben Lindstrom9f049032002-06-21 00:59:05 +0000163%u is replaced by the username of that user.
164After expansion,
165.Cm AuthorizedKeysFile
166is taken to be an absolute path or one relative to the user's home
167directory.
168The default is
169.Dq .ssh/authorized_keys .
170.It Cm Banner
Ben Lindstrom9f049032002-06-21 00:59:05 +0000171The contents of the specified file are sent to the remote user before
172authentication is allowed.
Damien Miller4890e532007-09-17 11:57:38 +1000173If the argument is
174.Dq none
175then no banner is displayed.
Ben Lindstrom9f049032002-06-21 00:59:05 +0000176This option is only available for protocol version 2.
177By default, no banner is displayed.
Ben Lindstrom9f049032002-06-21 00:59:05 +0000178.It Cm ChallengeResponseAuthentication
Damien Miller9c7bf8d2009-08-28 10:27:08 +1000179Specifies whether challenge-response authentication is allowed (e.g. via
180PAM or though authentication styles supported in
181.Xr login.conf 5 )
Ben Lindstrom9f049032002-06-21 00:59:05 +0000182The default is
183.Dq yes .
Damien Millerd8cb1f12008-02-10 22:40:12 +1100184.It Cm ChrootDirectory
Darren Tuckerb8c884a2010-01-08 18:53:43 +1100185Specifies the pathname of a directory to
Damien Millerd8cb1f12008-02-10 22:40:12 +1100186.Xr chroot 2
187to after authentication.
Darren Tuckerb8c884a2010-01-08 18:53:43 +1100188All components of the pathname must be root-owned directories that are
Damien Millerd8cb1f12008-02-10 22:40:12 +1100189not writable by any other user or group.
Darren Tucker51dbe502009-06-21 17:56:51 +1000190After the chroot,
191.Xr sshd 8
192changes the working directory to the user's home directory.
Damien Millerd8cb1f12008-02-10 22:40:12 +1100193.Pp
Darren Tuckerb8c884a2010-01-08 18:53:43 +1100194The pathname may contain the following tokens that are expanded at runtime once
Damien Millerd8cb1f12008-02-10 22:40:12 +1100195the connecting user has been authenticated: %% is replaced by a literal '%',
196%h is replaced by the home directory of the user being authenticated, and
197%u is replaced by the username of that user.
198.Pp
199The
200.Cm ChrootDirectory
201must contain the necessary files and directories to support the
Darren Tuckeraf501cf2009-06-21 17:53:04 +1000202user's session.
Damien Millerd8cb1f12008-02-10 22:40:12 +1100203For an interactive session this requires at least a shell, typically
204.Xr sh 1 ,
205and basic
206.Pa /dev
207nodes such as
208.Xr null 4 ,
209.Xr zero 4 ,
210.Xr stdin 4 ,
211.Xr stdout 4 ,
212.Xr stderr 4 ,
213.Xr arandom 4
214and
215.Xr tty 4
216devices.
217For file transfer sessions using
Darren Tuckerf92077f2009-06-21 17:56:25 +1000218.Dq sftp ,
Damien Millerd8cb1f12008-02-10 22:40:12 +1100219no additional configuration of the environment is necessary if the
Darren Tuckerf92077f2009-06-21 17:56:25 +1000220in-process sftp server is used,
221though sessions which use logging do require
Darren Tucker00fcd712009-06-21 17:56:00 +1000222.Pa /dev/log
223inside the chroot directory (see
224.Xr sftp-server 8
225for details).
Damien Millerd8cb1f12008-02-10 22:40:12 +1100226.Pp
227The default is not to
228.Xr chroot 2 .
Ben Lindstrom9f049032002-06-21 00:59:05 +0000229.It Cm Ciphers
230Specifies the ciphers allowed for protocol version 2.
231Multiple ciphers must be comma-separated.
Damien Miller05202ff2004-06-15 10:30:39 +1000232The supported ciphers are
233.Dq 3des-cbc ,
234.Dq aes128-cbc ,
235.Dq aes192-cbc ,
236.Dq aes256-cbc ,
237.Dq aes128-ctr ,
238.Dq aes192-ctr ,
239.Dq aes256-ctr ,
Damien Miller3710f272005-05-26 12:19:17 +1000240.Dq arcfour128 ,
241.Dq arcfour256 ,
Damien Miller05202ff2004-06-15 10:30:39 +1000242.Dq arcfour ,
243.Dq blowfish-cbc ,
244and
245.Dq cast128-cbc .
Damien Miller5b0d63f2006-03-15 11:56:56 +1100246The default is:
247.Bd -literal -offset 3n
Damien Miller9aa72ba2009-01-28 16:34:00 +1100248aes128-ctr,aes192-ctr,aes256-ctr,arcfour256,arcfour128,
249aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,aes192-cbc,
250aes256-cbc,arcfour
Ben Lindstrom9f049032002-06-21 00:59:05 +0000251.Ed
Ben Lindstrom9f049032002-06-21 00:59:05 +0000252.It Cm ClientAliveCountMax
Damien Millerb7977702006-01-03 18:47:31 +1100253Sets the number of client alive messages (see below) which may be
Ben Lindstrom9f049032002-06-21 00:59:05 +0000254sent without
Damien Miller5b0d63f2006-03-15 11:56:56 +1100255.Xr sshd 8
Damien Millerfbf486b2003-05-23 18:44:23 +1000256receiving any messages back from the client.
257If this threshold is reached while client alive messages are being sent,
Damien Miller5b0d63f2006-03-15 11:56:56 +1100258sshd will disconnect the client, terminating the session.
Damien Millerfbf486b2003-05-23 18:44:23 +1000259It is important to note that the use of client alive messages is very
260different from
Damien Miller12c150e2003-12-17 16:31:10 +1100261.Cm TCPKeepAlive
Damien Millerfbf486b2003-05-23 18:44:23 +1000262(below).
263The client alive messages are sent through the encrypted channel
264and therefore will not be spoofable.
265The TCP keepalive option enabled by
Damien Miller12c150e2003-12-17 16:31:10 +1100266.Cm TCPKeepAlive
Damien Millerfbf486b2003-05-23 18:44:23 +1000267is spoofable.
268The client alive mechanism is valuable when the client or
Ben Lindstrom9f049032002-06-21 00:59:05 +0000269server depend on knowing when a connection has become inactive.
270.Pp
Damien Millerfbf486b2003-05-23 18:44:23 +1000271The default value is 3.
272If
Ben Lindstrom9f049032002-06-21 00:59:05 +0000273.Cm ClientAliveInterval
Damien Millerb7977702006-01-03 18:47:31 +1100274(see below) is set to 15, and
Ben Lindstrom9f049032002-06-21 00:59:05 +0000275.Cm ClientAliveCountMax
Damien Miller5b0d63f2006-03-15 11:56:56 +1100276is left at the default, unresponsive SSH clients
Ben Lindstrom9f049032002-06-21 00:59:05 +0000277will be disconnected after approximately 45 seconds.
Damien Millercc3e8ba2006-03-15 12:06:55 +1100278This option applies to protocol version 2 only.
Damien Miller1594ad52005-05-26 12:12:19 +1000279.It Cm ClientAliveInterval
280Sets a timeout interval in seconds after which if no data has been received
281from the client,
Damien Miller5b0d63f2006-03-15 11:56:56 +1100282.Xr sshd 8
Damien Miller1594ad52005-05-26 12:12:19 +1000283will send a message through the encrypted
284channel to request a response from the client.
285The default
286is 0, indicating that these messages will not be sent to the client.
287This option applies to protocol version 2 only.
Ben Lindstrom9f049032002-06-21 00:59:05 +0000288.It Cm Compression
Damien Miller9786e6e2005-07-26 21:54:56 +1000289Specifies whether compression is allowed, or delayed until
290the user has authenticated successfully.
Ben Lindstrom9f049032002-06-21 00:59:05 +0000291The argument must be
Damien Miller9786e6e2005-07-26 21:54:56 +1000292.Dq yes ,
293.Dq delayed ,
Ben Lindstrom9f049032002-06-21 00:59:05 +0000294or
295.Dq no .
296The default is
Damien Miller9786e6e2005-07-26 21:54:56 +1000297.Dq delayed .
Ben Lindstrom9f049032002-06-21 00:59:05 +0000298.It Cm DenyGroups
299This keyword can be followed by a list of group name patterns, separated
300by spaces.
301Login is disallowed for users whose primary group or supplementary
302group list matches one of the patterns.
Ben Lindstrom9f049032002-06-21 00:59:05 +0000303Only group names are valid; a numerical group ID is not recognized.
304By default, login is allowed for all groups.
Damien Millerac73e512006-03-15 11:58:49 +1100305The allow/deny directives are processed in the following order:
306.Cm DenyUsers ,
307.Cm AllowUsers ,
308.Cm DenyGroups ,
309and finally
310.Cm AllowGroups .
Damien Miller0c2079d2006-03-15 11:54:21 +1100311.Pp
312See
313.Sx PATTERNS
314in
315.Xr ssh_config 5
316for more information on patterns.
Ben Lindstrom9f049032002-06-21 00:59:05 +0000317.It Cm DenyUsers
318This keyword can be followed by a list of user name patterns, separated
319by spaces.
320Login is disallowed for user names that match one of the patterns.
Ben Lindstrom9f049032002-06-21 00:59:05 +0000321Only user names are valid; a numerical user ID is not recognized.
322By default, login is allowed for all users.
323If the pattern takes the form USER@HOST then USER and HOST
324are separately checked, restricting logins to particular
325users from particular hosts.
Damien Millerac73e512006-03-15 11:58:49 +1100326The allow/deny directives are processed in the following order:
327.Cm DenyUsers ,
328.Cm AllowUsers ,
329.Cm DenyGroups ,
330and finally
331.Cm AllowGroups .
Damien Miller0c2079d2006-03-15 11:54:21 +1100332.Pp
333See
334.Sx PATTERNS
335in
336.Xr ssh_config 5
337for more information on patterns.
Damien Millere2754432006-07-24 14:06:47 +1000338.It Cm ForceCommand
339Forces the execution of the command specified by
340.Cm ForceCommand ,
Damien Millera1b48cc2008-03-27 11:02:02 +1100341ignoring any command supplied by the client and
342.Pa ~/.ssh/rc
343if present.
Damien Millere2754432006-07-24 14:06:47 +1000344The command is invoked by using the user's login shell with the -c option.
345This applies to shell, command, or subsystem execution.
346It is most useful inside a
347.Cm Match
348block.
349The command originally supplied by the client is available in the
350.Ev SSH_ORIGINAL_COMMAND
351environment variable.
Damien Millercdb6e652008-02-10 22:47:24 +1100352Specifying a command of
353.Dq internal-sftp
354will force the use of an in-process sftp server that requires no support
355files when used with
356.Cm ChrootDirectory .
Ben Lindstrom9f049032002-06-21 00:59:05 +0000357.It Cm GatewayPorts
358Specifies whether remote hosts are allowed to connect to ports
359forwarded for the client.
360By default,
Damien Miller5b0d63f2006-03-15 11:56:56 +1100361.Xr sshd 8
Damien Miller495dca32003-04-01 21:42:14 +1000362binds remote port forwardings to the loopback address.
363This prevents other remote hosts from connecting to forwarded ports.
Ben Lindstrom9f049032002-06-21 00:59:05 +0000364.Cm GatewayPorts
Damien Miller5b0d63f2006-03-15 11:56:56 +1100365can be used to specify that sshd
Damien Millerf91ee4c2005-03-01 21:24:33 +1100366should allow remote port forwardings to bind to non-loopback addresses, thus
367allowing other hosts to connect.
368The argument may be
369.Dq no
370to force remote port forwardings to be available to the local host only,
Ben Lindstrom9f049032002-06-21 00:59:05 +0000371.Dq yes
Damien Millerf91ee4c2005-03-01 21:24:33 +1100372to force remote port forwardings to bind to the wildcard address, or
373.Dq clientspecified
374to allow the client to select the address to which the forwarding is bound.
Ben Lindstrom9f049032002-06-21 00:59:05 +0000375The default is
376.Dq no .
Darren Tucker0efd1552003-08-26 11:49:55 +1000377.It Cm GSSAPIAuthentication
Damien Miller9b7b03b2003-09-02 22:57:05 +1000378Specifies whether user authentication based on GSSAPI is allowed.
Damien Millera8e06ce2003-11-21 23:48:55 +1100379The default is
Darren Tucker0efd1552003-08-26 11:49:55 +1000380.Dq no .
381Note that this option applies to protocol version 2 only.
382.It Cm GSSAPICleanupCredentials
383Specifies whether to automatically destroy the user's credentials cache
384on logout.
385The default is
386.Dq yes .
387Note that this option applies to protocol version 2 only.
Ben Lindstrom9f049032002-06-21 00:59:05 +0000388.It Cm HostbasedAuthentication
389Specifies whether rhosts or /etc/hosts.equiv authentication together
390with successful public key client host authentication is allowed
Damien Miller1faa7132006-03-15 11:55:31 +1100391(host-based authentication).
Ben Lindstrom9f049032002-06-21 00:59:05 +0000392This option is similar to
393.Cm RhostsRSAAuthentication
394and applies to protocol version 2 only.
395The default is
396.Dq no .
Damien Millerb594f382006-08-30 11:06:34 +1000397.It Cm HostbasedUsesNameFromPacketOnly
398Specifies whether or not the server will attempt to perform a reverse
399name lookup when matching the name in the
400.Pa ~/.shosts ,
401.Pa ~/.rhosts ,
402and
403.Pa /etc/hosts.equiv
404files during
405.Cm HostbasedAuthentication .
406A setting of
407.Dq yes
408means that
409.Xr sshd 8
410uses the name supplied by the client rather than
411attempting to resolve the name from the TCP connection itself.
412The default is
413.Dq no .
Damien Miller0a80ca12010-02-27 07:55:05 +1100414.It Cm HostCertificate
415Specifies a file containing a public host certificate.
416The certificate's public key must match a private host key already specified
417by
418.Cm HostKey .
419The default behaviour of
420.Xr sshd 8
421is not to load any certificates.
Ben Lindstrom9f049032002-06-21 00:59:05 +0000422.It Cm HostKey
423Specifies a file containing a private host key
424used by SSH.
425The default is
426.Pa /etc/ssh/ssh_host_key
427for protocol version 1, and
428.Pa /etc/ssh/ssh_host_rsa_key
429and
430.Pa /etc/ssh/ssh_host_dsa_key
431for protocol version 2.
432Note that
Damien Miller5b0d63f2006-03-15 11:56:56 +1100433.Xr sshd 8
Ben Lindstrom9f049032002-06-21 00:59:05 +0000434will refuse to use a file if it is group/world-accessible.
435It is possible to have multiple host key files.
436.Dq rsa1
437keys are used for version 1 and
438.Dq dsa
439or
440.Dq rsa
441are used for version 2 of the SSH protocol.
442.It Cm IgnoreRhosts
443Specifies that
444.Pa .rhosts
445and
446.Pa .shosts
447files will not be used in
Ben Lindstrom9f049032002-06-21 00:59:05 +0000448.Cm RhostsRSAAuthentication
449or
450.Cm HostbasedAuthentication .
451.Pp
452.Pa /etc/hosts.equiv
453and
454.Pa /etc/shosts.equiv
455are still used.
456The default is
457.Dq yes .
458.It Cm IgnoreUserKnownHosts
459Specifies whether
Damien Miller5b0d63f2006-03-15 11:56:56 +1100460.Xr sshd 8
Ben Lindstrom9f049032002-06-21 00:59:05 +0000461should ignore the user's
Damien Miller167ea5d2005-05-26 12:04:02 +1000462.Pa ~/.ssh/known_hosts
Ben Lindstrom9f049032002-06-21 00:59:05 +0000463during
464.Cm RhostsRSAAuthentication
465or
466.Cm HostbasedAuthentication .
467The default is
468.Dq no .
Ben Lindstrom9f049032002-06-21 00:59:05 +0000469.It Cm KerberosAuthentication
Damien Miller1a0c0b92003-09-02 22:51:17 +1000470Specifies whether the password provided by the user for
Ben Lindstrom9f049032002-06-21 00:59:05 +0000471.Cm PasswordAuthentication
Damien Miller1a0c0b92003-09-02 22:51:17 +1000472will be validated through the Kerberos KDC.
Ben Lindstrom9f049032002-06-21 00:59:05 +0000473To use this option, the server needs a
474Kerberos servtab which allows the verification of the KDC's identity.
Damien Miller5b0d63f2006-03-15 11:56:56 +1100475The default is
Ben Lindstrom9f049032002-06-21 00:59:05 +0000476.Dq no .
Damien Miller8448e662004-03-08 23:13:15 +1100477.It Cm KerberosGetAFSToken
Darren Tuckere2dd2d52005-10-03 18:19:06 +1000478If AFS is active and the user has a Kerberos 5 TGT, attempt to acquire
Damien Miller8448e662004-03-08 23:13:15 +1100479an AFS token before accessing the user's home directory.
Damien Miller5b0d63f2006-03-15 11:56:56 +1100480The default is
Damien Miller8448e662004-03-08 23:13:15 +1100481.Dq no .
Ben Lindstrom9f049032002-06-21 00:59:05 +0000482.It Cm KerberosOrLocalPasswd
Damien Miller5b0d63f2006-03-15 11:56:56 +1100483If password authentication through Kerberos fails then
Ben Lindstrom9f049032002-06-21 00:59:05 +0000484the password will be validated via any additional local mechanism
485such as
486.Pa /etc/passwd .
Damien Miller5b0d63f2006-03-15 11:56:56 +1100487The default is
Ben Lindstrom9f049032002-06-21 00:59:05 +0000488.Dq yes .
Ben Lindstrom9f049032002-06-21 00:59:05 +0000489.It Cm KerberosTicketCleanup
490Specifies whether to automatically destroy the user's ticket cache
491file on logout.
Damien Miller5b0d63f2006-03-15 11:56:56 +1100492The default is
Ben Lindstrom9f049032002-06-21 00:59:05 +0000493.Dq yes .
494.It Cm KeyRegenerationInterval
495In protocol version 1, the ephemeral server key is automatically regenerated
496after this many seconds (if it has been used).
497The purpose of regeneration is to prevent
498decrypting captured sessions by later breaking into the machine and
499stealing the keys.
500The key is never stored anywhere.
501If the value is 0, the key is never regenerated.
502The default is 3600 (seconds).
503.It Cm ListenAddress
504Specifies the local addresses
Damien Miller5b0d63f2006-03-15 11:56:56 +1100505.Xr sshd 8
Ben Lindstrom9f049032002-06-21 00:59:05 +0000506should listen on.
507The following forms may be used:
508.Pp
509.Bl -item -offset indent -compact
510.It
511.Cm ListenAddress
512.Sm off
513.Ar host No | Ar IPv4_addr No | Ar IPv6_addr
514.Sm on
515.It
516.Cm ListenAddress
517.Sm off
518.Ar host No | Ar IPv4_addr No : Ar port
519.Sm on
520.It
521.Cm ListenAddress
522.Sm off
523.Oo
524.Ar host No | Ar IPv6_addr Oc : Ar port
525.Sm on
526.El
527.Pp
528If
529.Ar port
530is not specified,
Damien Miller5b0d63f2006-03-15 11:56:56 +1100531sshd will listen on the address and all prior
Ben Lindstrom9f049032002-06-21 00:59:05 +0000532.Cm Port
Damien Millerfbf486b2003-05-23 18:44:23 +1000533options specified.
534The default is to listen on all local addresses.
Damien Miller495dca32003-04-01 21:42:14 +1000535Multiple
Ben Lindstrom9f049032002-06-21 00:59:05 +0000536.Cm ListenAddress
Damien Millerfbf486b2003-05-23 18:44:23 +1000537options are permitted.
538Additionally, any
Ben Lindstrom9f049032002-06-21 00:59:05 +0000539.Cm Port
Damien Miller5b0d63f2006-03-15 11:56:56 +1100540options must precede this option for non-port qualified addresses.
Ben Lindstrom9f049032002-06-21 00:59:05 +0000541.It Cm LoginGraceTime
542The server disconnects after this time if the user has not
543successfully logged in.
544If the value is 0, there is no time limit.
Damien Millerc1348632002-09-05 14:35:14 +1000545The default is 120 seconds.
Ben Lindstrom9f049032002-06-21 00:59:05 +0000546.It Cm LogLevel
547Gives the verbosity level that is used when logging messages from
Damien Millerf4f22b52006-03-15 11:57:25 +1100548.Xr sshd 8 .
Ben Lindstrom9f049032002-06-21 00:59:05 +0000549The possible values are:
Damien Miller5b0d63f2006-03-15 11:56:56 +1100550QUIET, FATAL, ERROR, INFO, VERBOSE, DEBUG, DEBUG1, DEBUG2, and DEBUG3.
Damien Miller495dca32003-04-01 21:42:14 +1000551The default is INFO.
552DEBUG and DEBUG1 are equivalent.
553DEBUG2 and DEBUG3 each specify higher levels of debugging output.
554Logging with a DEBUG level violates the privacy of users and is not recommended.
Ben Lindstrom9f049032002-06-21 00:59:05 +0000555.It Cm MACs
556Specifies the available MAC (message authentication code) algorithms.
557The MAC algorithm is used in protocol version 2
558for data integrity protection.
559Multiple algorithms must be comma-separated.
Damien Miller5b0d63f2006-03-15 11:56:56 +1100560The default is:
Damien Miller22b7b492007-06-11 14:07:12 +1000561.Bd -literal -offset indent
562hmac-md5,hmac-sha1,umac-64@openssh.com,
563hmac-ripemd160,hmac-sha1-96,hmac-md5-96
564.Ed
Darren Tucker45150472006-07-12 22:34:17 +1000565.It Cm Match
Damien Millerd04f3572006-07-24 13:46:50 +1000566Introduces a conditional block.
Damien Miller8c234032006-07-24 14:05:08 +1000567If all of the criteria on the
Darren Tucker45150472006-07-12 22:34:17 +1000568.Cm Match
Damien Miller8c234032006-07-24 14:05:08 +1000569line are satisfied, the keywords on the following lines override those
570set in the global section of the config file, until either another
Darren Tucker45150472006-07-12 22:34:17 +1000571.Cm Match
Damien Miller8c234032006-07-24 14:05:08 +1000572line or the end of the file.
Darren Tucker7a3935d2008-06-10 22:59:10 +1000573.Pp
Damien Millerd04f3572006-07-24 13:46:50 +1000574The arguments to
Darren Tucker45150472006-07-12 22:34:17 +1000575.Cm Match
Damien Miller8c234032006-07-24 14:05:08 +1000576are one or more criteria-pattern pairs.
Darren Tucker45150472006-07-12 22:34:17 +1000577The available criteria are
578.Cm User ,
Damien Miller565ca3f2006-08-19 00:23:15 +1000579.Cm Group ,
Darren Tucker45150472006-07-12 22:34:17 +1000580.Cm Host ,
581and
582.Cm Address .
Darren Tucker7a3935d2008-06-10 22:59:10 +1000583The match patterns may consist of single entries or comma-separated
584lists and may use the wildcard and negation operators described in the
Darren Tuckerb06cc4a2008-06-10 22:59:53 +1000585.Sx PATTERNS
Darren Tucker7a3935d2008-06-10 22:59:10 +1000586section of
Darren Tuckerb06cc4a2008-06-10 22:59:53 +1000587.Xr ssh_config 5 .
Darren Tucker7a3935d2008-06-10 22:59:10 +1000588.Pp
589The patterns in an
590.Cm Address
591criteria may additionally contain addresses to match in CIDR
Darren Tucker6a2a4002008-06-10 23:03:04 +1000592address/masklen format, e.g.\&
Darren Tucker7a3935d2008-06-10 22:59:10 +1000593.Dq 192.0.2.0/24
594or
595.Dq 3ffe:ffff::/32 .
596Note that the mask length provided must be consistent with the address -
597it is an error to specify a mask length that is too long for the address
Darren Tucker6a2a4002008-06-10 23:03:04 +1000598or one with bits set in this host portion of the address.
599For example,
Darren Tucker7a3935d2008-06-10 22:59:10 +1000600.Dq 192.0.2.0/33
601and
Darren Tucker6a2a4002008-06-10 23:03:04 +1000602.Dq 192.0.2.0/8
Darren Tucker7a3935d2008-06-10 22:59:10 +1000603respectively.
604.Pp
Darren Tucker45150472006-07-12 22:34:17 +1000605Only a subset of keywords may be used on the lines following a
606.Cm Match
607keyword.
608Available keywords are
Damien Miller17819012009-01-28 16:20:17 +1100609.Cm AllowAgentForwarding ,
Damien Miller9b439df2006-07-24 14:04:00 +1000610.Cm AllowTcpForwarding ,
Darren Tucker1629c072007-02-19 22:25:37 +1100611.Cm Banner ,
Damien Miller797e3d12008-05-19 14:27:42 +1000612.Cm ChrootDirectory ,
Damien Millere2754432006-07-24 14:06:47 +1000613.Cm ForceCommand ,
Damien Miller9b439df2006-07-24 14:04:00 +1000614.Cm GatewayPorts ,
Damien Miller25434de2008-05-19 14:29:08 +1000615.Cm GSSAPIAuthentication ,
616.Cm HostbasedAuthentication ,
Darren Tucker1d75f222007-03-01 21:31:28 +1100617.Cm KbdInteractiveAuthentication ,
Damien Miller5737e362007-03-06 21:21:18 +1100618.Cm KerberosAuthentication ,
Damien Miller307c1d12008-06-16 07:56:20 +1000619.Cm MaxAuthTries ,
Damien Millerc62a5af2008-06-16 07:55:46 +1000620.Cm MaxSessions ,
Darren Tucker1629c072007-02-19 22:25:37 +1100621.Cm PasswordAuthentication ,
Damien Miller51bde602008-11-03 19:23:10 +1100622.Cm PermitEmptyPasswords ,
Damien Millerd1de9952006-07-24 14:05:48 +1000623.Cm PermitOpen ,
Darren Tucker15f94272008-01-01 20:36:56 +1100624.Cm PermitRootLogin ,
Darren Tucker1477ea12009-10-07 08:36:05 +1100625.Cm PubkeyAuthentication ,
Darren Tucker1629c072007-02-19 22:25:37 +1100626.Cm RhostsRSAAuthentication ,
627.Cm RSAAuthentication ,
Damien Millerd1de9952006-07-24 14:05:48 +1000628.Cm X11DisplayOffset ,
Damien Miller19913842009-02-23 10:53:58 +1100629.Cm X11Forwarding
Darren Tucker45150472006-07-12 22:34:17 +1000630and
Damien Miller0296ae82009-02-23 11:00:24 +1100631.Cm X11UseLocalHost .
Darren Tucker89413db2004-05-24 10:36:23 +1000632.It Cm MaxAuthTries
633Specifies the maximum number of authentication attempts permitted per
Damien Miller26213e52004-06-30 22:39:34 +1000634connection.
635Once the number of failures reaches half this value,
636additional failures are logged.
637The default is 6.
Damien Miller7207f642008-05-19 15:34:50 +1000638.It Cm MaxSessions
639Specifies the maximum number of open sessions permitted per network connection.
640The default is 10.
Ben Lindstrom9f049032002-06-21 00:59:05 +0000641.It Cm MaxStartups
642Specifies the maximum number of concurrent unauthenticated connections to the
Damien Miller5b0d63f2006-03-15 11:56:56 +1100643SSH daemon.
Ben Lindstrom9f049032002-06-21 00:59:05 +0000644Additional connections will be dropped until authentication succeeds or the
645.Cm LoginGraceTime
646expires for a connection.
647The default is 10.
648.Pp
649Alternatively, random early drop can be enabled by specifying
650the three colon separated values
651.Dq start:rate:full
Damien Miller208f1ed2006-03-15 11:56:03 +1100652(e.g. "10:30:60").
Damien Millerf4f22b52006-03-15 11:57:25 +1100653.Xr sshd 8
Ben Lindstrom9f049032002-06-21 00:59:05 +0000654will refuse connection attempts with a probability of
655.Dq rate/100
656(30%)
657if there are currently
658.Dq start
659(10)
660unauthenticated connections.
661The probability increases linearly and all connection attempts
662are refused if the number of unauthenticated connections reaches
663.Dq full
664(60).
665.It Cm PasswordAuthentication
666Specifies whether password authentication is allowed.
667The default is
668.Dq yes .
669.It Cm PermitEmptyPasswords
670When password authentication is allowed, it specifies whether the
671server allows login to accounts with empty password strings.
672The default is
673.Dq no .
Damien Miller9b439df2006-07-24 14:04:00 +1000674.It Cm PermitOpen
675Specifies the destinations to which TCP port forwarding is permitted.
676The forwarding specification must be one of the following forms:
677.Pp
678.Bl -item -offset indent -compact
679.It
680.Cm PermitOpen
681.Sm off
682.Ar host : port
683.Sm on
684.It
685.Cm PermitOpen
686.Sm off
687.Ar IPv4_addr : port
688.Sm on
689.It
690.Cm PermitOpen
691.Sm off
692.Ar \&[ IPv6_addr \&] : port
693.Sm on
694.El
695.Pp
Damien Millera765cf42006-07-24 14:08:13 +1000696Multiple forwards may be specified by separating them with whitespace.
Damien Miller9b439df2006-07-24 14:04:00 +1000697An argument of
698.Dq any
699can be used to remove all restrictions and permit any forwarding requests.
Damien Miller65bc2c42006-07-24 14:04:16 +1000700By default all port forwarding requests are permitted.
Ben Lindstrom9f049032002-06-21 00:59:05 +0000701.It Cm PermitRootLogin
Darren Tuckerb3509012005-01-20 11:01:46 +1100702Specifies whether root can log in using
Ben Lindstrom9f049032002-06-21 00:59:05 +0000703.Xr ssh 1 .
704The argument must be
705.Dq yes ,
706.Dq without-password ,
Damien Miller5b0d63f2006-03-15 11:56:56 +1100707.Dq forced-commands-only ,
Ben Lindstrom9f049032002-06-21 00:59:05 +0000708or
709.Dq no .
710The default is
711.Dq yes .
712.Pp
713If this option is set to
Damien Miller5b0d63f2006-03-15 11:56:56 +1100714.Dq without-password ,
Darren Tucker9dca0992005-02-01 19:16:45 +1100715password authentication is disabled for root.
Ben Lindstrom9f049032002-06-21 00:59:05 +0000716.Pp
717If this option is set to
Damien Miller5b0d63f2006-03-15 11:56:56 +1100718.Dq forced-commands-only ,
Ben Lindstrom9f049032002-06-21 00:59:05 +0000719root login with public key authentication will be allowed,
720but only if the
721.Ar command
722option has been specified
723(which may be useful for taking remote backups even if root login is
Damien Millerfbf486b2003-05-23 18:44:23 +1000724normally not allowed).
725All other authentication methods are disabled for root.
Ben Lindstrom9f049032002-06-21 00:59:05 +0000726.Pp
727If this option is set to
Damien Miller5b0d63f2006-03-15 11:56:56 +1100728.Dq no ,
Darren Tuckerb3509012005-01-20 11:01:46 +1100729root is not allowed to log in.
Damien Millerd27b9472005-12-13 19:29:02 +1100730.It Cm PermitTunnel
731Specifies whether
732.Xr tun 4
733device forwarding is allowed.
Damien Miller7b58e802005-12-13 19:33:19 +1100734The argument must be
735.Dq yes ,
Damien Miller991dba42006-07-10 20:16:27 +1000736.Dq point-to-point
737(layer 3),
738.Dq ethernet
739(layer 2), or
Damien Miller7b58e802005-12-13 19:33:19 +1100740.Dq no .
Damien Miller991dba42006-07-10 20:16:27 +1000741Specifying
742.Dq yes
743permits both
744.Dq point-to-point
745and
746.Dq ethernet .
Damien Millerd27b9472005-12-13 19:29:02 +1100747The default is
748.Dq no .
Ben Lindstrom5d860f02002-08-01 01:28:38 +0000749.It Cm PermitUserEnvironment
750Specifies whether
751.Pa ~/.ssh/environment
Ben Lindstrombd9bf382002-08-20 18:54:20 +0000752and
Ben Lindstrom5d860f02002-08-01 01:28:38 +0000753.Cm environment=
754options in
755.Pa ~/.ssh/authorized_keys
Ben Lindstrombd9bf382002-08-20 18:54:20 +0000756are processed by
Damien Miller5b0d63f2006-03-15 11:56:56 +1100757.Xr sshd 8 .
Ben Lindstrom5d860f02002-08-01 01:28:38 +0000758The default is
759.Dq no .
Ben Lindstrombd9bf382002-08-20 18:54:20 +0000760Enabling environment processing may enable users to bypass access
761restrictions in some configurations using mechanisms such as
762.Ev LD_PRELOAD .
Ben Lindstrom9f049032002-06-21 00:59:05 +0000763.It Cm PidFile
Ben Lindstrom959de992002-06-23 00:35:25 +0000764Specifies the file that contains the process ID of the
Damien Millerf4f22b52006-03-15 11:57:25 +1100765SSH daemon.
Ben Lindstrom9f049032002-06-21 00:59:05 +0000766The default is
767.Pa /var/run/sshd.pid .
768.It Cm Port
769Specifies the port number that
Damien Miller5b0d63f2006-03-15 11:56:56 +1100770.Xr sshd 8
Ben Lindstrom9f049032002-06-21 00:59:05 +0000771listens on.
772The default is 22.
773Multiple options of this type are permitted.
774See also
775.Cm ListenAddress .
776.It Cm PrintLastLog
777Specifies whether
Damien Miller5b0d63f2006-03-15 11:56:56 +1100778.Xr sshd 8
Darren Tucker7cc5c232004-11-05 20:06:59 +1100779should print the date and time of the last user login when a user logs
780in interactively.
Ben Lindstrom9f049032002-06-21 00:59:05 +0000781The default is
782.Dq yes .
783.It Cm PrintMotd
784Specifies whether
Damien Miller5b0d63f2006-03-15 11:56:56 +1100785.Xr sshd 8
Ben Lindstrom9f049032002-06-21 00:59:05 +0000786should print
787.Pa /etc/motd
788when a user logs in interactively.
789(On some systems it is also printed by the shell,
790.Pa /etc/profile ,
791or equivalent.)
792The default is
793.Dq yes .
794.It Cm Protocol
795Specifies the protocol versions
Damien Miller5b0d63f2006-03-15 11:56:56 +1100796.Xr sshd 8
Ben Lindstrom9c445542002-07-11 03:59:18 +0000797supports.
Ben Lindstrom9f049032002-06-21 00:59:05 +0000798The possible values are
Damien Miller5b0d63f2006-03-15 11:56:56 +1100799.Sq 1
Ben Lindstrom9f049032002-06-21 00:59:05 +0000800and
Damien Miller5b0d63f2006-03-15 11:56:56 +1100801.Sq 2 .
Ben Lindstrom9f049032002-06-21 00:59:05 +0000802Multiple versions must be comma-separated.
803The default is
Darren Tucker7a4a7652009-10-11 21:51:40 +1100804.Sq 2 .
Ben Lindstrom9c445542002-07-11 03:59:18 +0000805Note that the order of the protocol list does not indicate preference,
806because the client selects among multiple protocol versions offered
807by the server.
808Specifying
809.Dq 2,1
810is identical to
811.Dq 1,2 .
Ben Lindstrom9f049032002-06-21 00:59:05 +0000812.It Cm PubkeyAuthentication
813Specifies whether public key authentication is allowed.
814The default is
815.Dq yes .
816Note that this option applies to protocol version 2 only.
Damien Miller1aed65e2010-03-04 21:53:35 +1100817.It Cm RevokedKeys
818Specifies a list of revoked public keys.
819Keys listed in this file will be refused for public key authentication.
820Note that if this file is not readable, then public key authentication will
821be refused for all users.
Ben Lindstrom9f049032002-06-21 00:59:05 +0000822.It Cm RhostsRSAAuthentication
823Specifies whether rhosts or /etc/hosts.equiv authentication together
824with successful RSA host authentication is allowed.
825The default is
826.Dq no .
827This option applies to protocol version 1 only.
828.It Cm RSAAuthentication
829Specifies whether pure RSA authentication is allowed.
830The default is
831.Dq yes .
832This option applies to protocol version 1 only.
833.It Cm ServerKeyBits
834Defines the number of bits in the ephemeral protocol version 1 server key.
Darren Tucker7499b0c2008-07-02 22:35:43 +1000835The minimum value is 512, and the default is 1024.
Ben Lindstrom9f049032002-06-21 00:59:05 +0000836.It Cm StrictModes
837Specifies whether
Damien Miller5b0d63f2006-03-15 11:56:56 +1100838.Xr sshd 8
Ben Lindstrom9f049032002-06-21 00:59:05 +0000839should check file modes and ownership of the
840user's files and home directory before accepting login.
841This is normally desirable because novices sometimes accidentally leave their
842directory or files world-writable.
843The default is
844.Dq yes .
Darren Tuckerf788a912010-01-08 17:06:47 +1100845Note that this does not apply to
846.Cm ChrootDirectory ,
847whose permissions and ownership are checked unconditionally.
Ben Lindstrom9f049032002-06-21 00:59:05 +0000848.It Cm Subsystem
Damien Miller208f1ed2006-03-15 11:56:03 +1100849Configures an external subsystem (e.g. file transfer daemon).
Damien Miller917f9b62006-07-10 20:36:47 +1000850Arguments should be a subsystem name and a command (with optional arguments)
851to execute upon subsystem request.
Damien Millerd8cb1f12008-02-10 22:40:12 +1100852.Pp
Ben Lindstrom9f049032002-06-21 00:59:05 +0000853The command
854.Xr sftp-server 8
855implements the
856.Dq sftp
857file transfer subsystem.
Damien Millerd8cb1f12008-02-10 22:40:12 +1100858.Pp
859Alternately the name
860.Dq internal-sftp
861implements an in-process
862.Dq sftp
863server.
864This may simplify configurations using
865.Cm ChrootDirectory
866to force a different filesystem root on clients.
867.Pp
Ben Lindstrom9f049032002-06-21 00:59:05 +0000868By default no subsystems are defined.
869Note that this option applies to protocol version 2 only.
870.It Cm SyslogFacility
871Gives the facility code that is used when logging messages from
Damien Millerf4f22b52006-03-15 11:57:25 +1100872.Xr sshd 8 .
Ben Lindstrom9f049032002-06-21 00:59:05 +0000873The possible values are: DAEMON, USER, AUTH, LOCAL0, LOCAL1, LOCAL2,
874LOCAL3, LOCAL4, LOCAL5, LOCAL6, LOCAL7.
875The default is AUTH.
Damien Miller12c150e2003-12-17 16:31:10 +1100876.It Cm TCPKeepAlive
877Specifies whether the system should send TCP keepalive messages to the
878other side.
879If they are sent, death of the connection or crash of one
880of the machines will be properly noticed.
881However, this means that
882connections will die if the route is down temporarily, and some people
883find it annoying.
884On the other hand, if TCP keepalives are not sent,
885sessions may hang indefinitely on the server, leaving
886.Dq ghost
887users and consuming server resources.
888.Pp
889The default is
890.Dq yes
891(to send TCP keepalive messages), and the server will notice
892if the network goes down or the client host crashes.
893This avoids infinitely hanging sessions.
894.Pp
895To disable TCP keepalive messages, the value should be set to
896.Dq no .
Damien Miller1aed65e2010-03-04 21:53:35 +1100897.It Cm TrustedUserCAKeys
898Specifies a file containing public keys of certificate authorities that are
Damien Millerc6db99e2010-03-05 10:41:45 +1100899trusted to sign user certificates for authentication.
Damien Miller72b33822010-03-05 07:39:01 +1100900Keys are listed one per line; empty lines and comments starting with
Damien Miller1aed65e2010-03-04 21:53:35 +1100901.Ql #
902are allowed.
903If a certificate is presented for authentication and has its signing CA key
904listed in this file, then it may be used for authentication for any user
905listed in the certificate's principals list.
906Note that certificates that lack a list of principals will not be permitted
907for authentication using
908.Cm TrustedUserCAKeys .
Damien Miller72b33822010-03-05 07:39:01 +1100909For more details on certificates, see the
Damien Miller1aed65e2010-03-04 21:53:35 +1100910.Sx CERTIFICATES
911section in
912.Xr ssh-keygen 1 .
Damien Miller3a961dc2003-06-03 10:25:48 +1000913.It Cm UseDNS
914Specifies whether
Damien Miller5b0d63f2006-03-15 11:56:56 +1100915.Xr sshd 8
Darren Tucker83d5a982005-03-31 21:33:50 +1000916should look up the remote host name and check that
Damien Miller3a961dc2003-06-03 10:25:48 +1000917the resolved host name for the remote IP address maps back to the
918very same IP address.
919The default is
920.Dq yes .
Ben Lindstrom9f049032002-06-21 00:59:05 +0000921.It Cm UseLogin
922Specifies whether
923.Xr login 1
924is used for interactive login sessions.
925The default is
926.Dq no .
927Note that
928.Xr login 1
929is never used for remote command execution.
930Note also, that if this is enabled,
931.Cm X11Forwarding
932will be disabled because
933.Xr login 1
934does not know how to handle
935.Xr xauth 1
Damien Miller495dca32003-04-01 21:42:14 +1000936cookies.
937If
Ben Lindstrom9f049032002-06-21 00:59:05 +0000938.Cm UsePrivilegeSeparation
939is specified, it will be disabled after authentication.
Damien Miller2e193e22003-05-14 15:13:03 +1000940.It Cm UsePAM
Darren Tucker1dcff9a2004-05-13 16:51:40 +1000941Enables the Pluggable Authentication Module interface.
942If set to
943.Dq yes
944this will enable PAM authentication using
945.Cm ChallengeResponseAuthentication
Darren Tuckera4904f72006-02-23 21:35:30 +1100946and
947.Cm PasswordAuthentication
948in addition to PAM account and session module processing for all
949authentication types.
Darren Tucker1dcff9a2004-05-13 16:51:40 +1000950.Pp
951Because PAM challenge-response authentication usually serves an equivalent
952role to password authentication, you should disable either
953.Cm PasswordAuthentication
954or
955.Cm ChallengeResponseAuthentication.
956.Pp
957If
958.Cm UsePAM
959is enabled, you will not be able to run
960.Xr sshd 8
961as a non-root user.
962The default is
Darren Tucker6c0c0702003-10-09 14:13:53 +1000963.Dq no .
Ben Lindstrom9f049032002-06-21 00:59:05 +0000964.It Cm UsePrivilegeSeparation
965Specifies whether
Damien Miller5b0d63f2006-03-15 11:56:56 +1100966.Xr sshd 8
Ben Lindstrom9f049032002-06-21 00:59:05 +0000967separates privileges by creating an unprivileged child process
Damien Miller495dca32003-04-01 21:42:14 +1000968to deal with incoming network traffic.
969After successful authentication, another process will be created that has
970the privilege of the authenticated user.
971The goal of privilege separation is to prevent privilege
Ben Lindstrom9f049032002-06-21 00:59:05 +0000972escalation by containing any corruption within the unprivileged processes.
973The default is
974.Dq yes .
Ben Lindstrom9f049032002-06-21 00:59:05 +0000975.It Cm X11DisplayOffset
976Specifies the first display number available for
Damien Miller5b0d63f2006-03-15 11:56:56 +1100977.Xr sshd 8 Ns 's
Ben Lindstrom9f049032002-06-21 00:59:05 +0000978X11 forwarding.
Damien Miller5b0d63f2006-03-15 11:56:56 +1100979This prevents sshd from interfering with real X11 servers.
Ben Lindstrom9f049032002-06-21 00:59:05 +0000980The default is 10.
981.It Cm X11Forwarding
982Specifies whether X11 forwarding is permitted.
Damien Miller101c4a72002-09-19 11:51:21 +1000983The argument must be
984.Dq yes
985or
986.Dq no .
Ben Lindstrom9f049032002-06-21 00:59:05 +0000987The default is
988.Dq no .
Damien Miller101c4a72002-09-19 11:51:21 +1000989.Pp
990When X11 forwarding is enabled, there may be additional exposure to
991the server and to client displays if the
Damien Miller5b0d63f2006-03-15 11:56:56 +1100992.Xr sshd 8
Damien Miller101c4a72002-09-19 11:51:21 +1000993proxy display is configured to listen on the wildcard address (see
994.Cm X11UseLocalhost
Damien Miller5b0d63f2006-03-15 11:56:56 +1100995below), though this is not the default.
Damien Miller101c4a72002-09-19 11:51:21 +1000996Additionally, the authentication spoofing and authentication data
997verification and substitution occur on the client side.
998The security risk of using X11 forwarding is that the client's X11
Damien Miller5b0d63f2006-03-15 11:56:56 +1100999display server may be exposed to attack when the SSH client requests
Damien Miller101c4a72002-09-19 11:51:21 +10001000forwarding (see the warnings for
1001.Cm ForwardX11
1002in
Damien Millerf1ce5052003-06-11 22:04:39 +10001003.Xr ssh_config 5 ) .
Damien Miller101c4a72002-09-19 11:51:21 +10001004A system administrator may have a stance in which they want to
1005protect clients that may expose themselves to attack by unwittingly
1006requesting X11 forwarding, which can warrant a
1007.Dq no
1008setting.
1009.Pp
1010Note that disabling X11 forwarding does not prevent users from
1011forwarding X11 traffic, as users can always install their own forwarders.
Ben Lindstrom9f049032002-06-21 00:59:05 +00001012X11 forwarding is automatically disabled if
1013.Cm UseLogin
1014is enabled.
1015.It Cm X11UseLocalhost
1016Specifies whether
Damien Miller5b0d63f2006-03-15 11:56:56 +11001017.Xr sshd 8
Ben Lindstrom9f049032002-06-21 00:59:05 +00001018should bind the X11 forwarding server to the loopback address or to
Damien Miller495dca32003-04-01 21:42:14 +10001019the wildcard address.
1020By default,
Damien Miller5b0d63f2006-03-15 11:56:56 +11001021sshd binds the forwarding server to the loopback address and sets the
Ben Lindstrom9f049032002-06-21 00:59:05 +00001022hostname part of the
1023.Ev DISPLAY
1024environment variable to
1025.Dq localhost .
Ben Lindstrom15b61202002-08-20 18:44:24 +00001026This prevents remote hosts from connecting to the proxy display.
Ben Lindstrom9f049032002-06-21 00:59:05 +00001027However, some older X11 clients may not function with this
1028configuration.
1029.Cm X11UseLocalhost
1030may be set to
1031.Dq no
1032to specify that the forwarding server should be bound to the wildcard
1033address.
1034The argument must be
1035.Dq yes
1036or
1037.Dq no .
1038The default is
1039.Dq yes .
1040.It Cm XAuthLocation
Damien Miller05913ba2002-09-04 16:51:03 +10001041Specifies the full pathname of the
Ben Lindstrom9f049032002-06-21 00:59:05 +00001042.Xr xauth 1
1043program.
1044The default is
1045.Pa /usr/X11R6/bin/xauth .
1046.El
Damien Millere3beba22006-03-15 11:59:25 +11001047.Sh TIME FORMATS
Damien Millerf4f22b52006-03-15 11:57:25 +11001048.Xr sshd 8
Ben Lindstrom9f049032002-06-21 00:59:05 +00001049command-line arguments and configuration file options that specify time
1050may be expressed using a sequence of the form:
1051.Sm off
Ben Lindstrom1f8cf4f2002-08-20 18:43:27 +00001052.Ar time Op Ar qualifier ,
Ben Lindstrom9f049032002-06-21 00:59:05 +00001053.Sm on
1054where
1055.Ar time
1056is a positive integer value and
1057.Ar qualifier
1058is one of the following:
1059.Pp
1060.Bl -tag -width Ds -compact -offset indent
Damien Miller393821a2006-07-24 14:04:53 +10001061.It Aq Cm none
Ben Lindstrom9f049032002-06-21 00:59:05 +00001062seconds
1063.It Cm s | Cm S
1064seconds
1065.It Cm m | Cm M
1066minutes
1067.It Cm h | Cm H
1068hours
1069.It Cm d | Cm D
1070days
1071.It Cm w | Cm W
1072weeks
1073.El
1074.Pp
1075Each member of the sequence is added together to calculate
1076the total time value.
1077.Pp
1078Time format examples:
1079.Pp
1080.Bl -tag -width Ds -compact -offset indent
1081.It 600
1082600 seconds (10 minutes)
1083.It 10m
108410 minutes
1085.It 1h30m
10861 hour 30 minutes (90 minutes)
1087.El
1088.Sh FILES
1089.Bl -tag -width Ds
1090.It Pa /etc/ssh/sshd_config
1091Contains configuration data for
Damien Millerf4f22b52006-03-15 11:57:25 +11001092.Xr sshd 8 .
Ben Lindstrom9f049032002-06-21 00:59:05 +00001093This file should be writable by root only, but it is recommended
1094(though not necessary) that it be world-readable.
1095.El
Damien Millerf1ce5052003-06-11 22:04:39 +10001096.Sh SEE ALSO
1097.Xr sshd 8
Ben Lindstrom9f049032002-06-21 00:59:05 +00001098.Sh AUTHORS
1099OpenSSH is a derivative of the original and free
1100ssh 1.2.12 release by Tatu Ylonen.
1101Aaron Campbell, Bob Beck, Markus Friedl, Niels Provos,
1102Theo de Raadt and Dug Song
1103removed many bugs, re-added newer features and
1104created OpenSSH.
1105Markus Friedl contributed the support for SSH
1106protocol versions 1.5 and 2.0.
1107Niels Provos and Markus Friedl contributed support
1108for privilege separation.