unixdev.net


Switch to SpeakEasy.net DSL

The Modular Manual Browser

Home Page
Manual: (OSF1-V5.1-alpha)
Page:
Section:
Apropos / Subsearch:
optional field



sshd-check-conf(8)					   sshd-check-conf(8)



NAME

  sshd-check-conf - Checks what	the configuration allows or denies based on
  the incoming user and/or the host name

SYNOPSIS

  sshd-check-conf [-d debug_level] [-v]	[-V] [-h] [-f config_file] [[user@]
  host ..]

OPTIONS

  -d debug_level_spec
      Debugs the server.  The debugging	level is either	a number or a comma-
      separated	list of	assignments.

  -v  Enables the verbose mode,	and displays verbose debugging messages.

  -V  Displays the version string.

  -h  Displays a short help file on command-line options.

  -f config_file
      Specifies	the name of the	configuration file. The	default	is
      /etc/ssh2/sshd2_config or	$HOME/.ssh2/sshd2_config, depending on who is
      running the program, root	or normal user.

DESCRIPTION

  The sshd-check-conf command checks how the sshd2 daemon will react to	an
  incoming user, based on the user name	and the	remote host name given as
  parameters. The following parameters are checked:

    +  AllowHosts

    +  DenyHosts

    +  AllowSHosts

    +  DenySHosts

    +  AllowUsers

    +  DenyUsers

    +  AllowGroups

    +  DenyGroups

    +  ChrootUsers

    +  ChrootGroups

    +  AllowTcpForwardingForUsers

    +  DenyTcpForwardingForUsers

    +  AllowTcpForwardingForGroups

    +  DenyTcpForwardingForGroups

NOTES

  Any nonoptions presented on the command line will be regarded	as
  [user@]host patterns (that is, the user part is optional).  If the host
  part is a valid IP address, it is looked up from DNS.	 Otherwise, it is
  interpreted as a host	name, and the corresponding IP addresses will be
  queried from DNS.

  You can specify multiple patterns on the command line.

  If no	patterns are specified on the command line, sshd-check-conf will go
  into interactive mode, where the patterns can	be given one at	a time,	and
  they will be checked.	 The dump command can be used in interactive mode.
  This command	dumps the configuration	(with subconfigurations	amended) for
  the previous pattern given.

EXAMPLES

       % sshd-check-conf -f /etc/ssh2/sshd2_config sjl@ssh.com
       % sshd-check-conf -f /etc/ssh2/sshd2_config luser1@evil.org luser2@aol.com
       % sshd-check-conf

LEGAL NOTICES

  SSH is a registered trademark	of SSH Communication Security Ltd.

SEE ALSO

  Commands: sshd2(8)

  Files: sshd2_config(4), sshd2_subconfig(4)