- OpenSSH: Manual Pages
Looking for:
Manuals - SSH software |
Manual ssh -
Erlang -- SSH Reference Manual.
The default value can be set on a host-by-host basis in the configuration files; see the Compression option. Protocol version 1 allows specification of a single cipher. The supported values are ''3des'', ''blowfish'', and ''des''. It is believed to be secure.
Its use is strongly discouraged due to cryptographic weaknesses. The default is ''3des''. See the Ciphers keyword for more information.
Whenever a connection is made to this port, the connection is forwarded over the secure channel, and the application protocol is then used to determine where to connect to from the remote machine. Only root can forward privileged ports.
Dynamic port forwardings can also be specified in the configuration file. Only the superuser can forward privileged ports. By default, the local port is bound in accordance with the GatewayPorts setting. The escape character is only recognized at the beginning of a line. The escape character followed by a dot '. Setting the character to ''none'' disables any escapes and makes the session fully transparent.
This is useful if ssh is going to ask for passwords or passphrases, but the user wants it in the background. This implies -n. The recommended way to start X11 programs at a remote site is with something like ssh -f host xterm. If the ExitOnForwardFailure configuration option is set to ''yes'', then a client started with -f will wait for all remote port forwards to be successfully established before placing itself in the background.
This option is only available if support for smartcard devices is compiled in default is no support. Identity files may also be specified on a per-host basis in the configuration file.
It is possible to have multiple -i options and multiple identities specified in configuration files. Whenever a connection is made to this port, the connection is forwarded over the secure channel, and a connection is made to host port hostport from the remote machine. Port forwardings can also be specified in the configuration file.
This also may be specified on a per-host basis in the configuration file. Multiple -M options places ssh into ''master'' mode with confirmation required before slave connections are accepted.
See the MACs keyword for more information. This is useful for just forwarding ports protocol version 2 only. This must be used when ssh is run in the background. A common trick is to use this to run X11 programs on a remote machine. For example, ssh -n shadows. The ssh program will be put in the background.
This does not work if ssh needs to ask for a password or passphrase; see also the -f option. Unicode filenames are supported if the emulator and the underlaying OS support it. There is an ambiguity in the synchronized selection of cipher and mac algorithm. The first rule that matches when read in order from the top is applied. The questionable sha1-based algorithms diffie-hellman-group-exchange-sha1 and diffie-hellman-groupsha1 are still enabled by default for compatibility with ancient clients and servers.
They will be disabled by default when the draft is turned into an RFC. The shell and the cli both support unicode. The second paragraph in section 5. Host-Based Authentication: "hostbased".
Comments
Post a Comment