Config-Model-OpenSsh
view release on metacpan or search on metacpan
lib/Config/Model/models/Ssh.pod view on Meta::CPAN
the server. The default is unset, which means that the
expected GSSAPI server identity will be determined from the
target hostname.If set, specifies the GSSAPI
server identity that ssh should expect when connecting to
the server. The default is unset, which means that the
expected GSSAPI server identity will be determined from the
target hostname. I< Optional. Type uniline. >
=head2 GSSAPIDelegateCredentials
Forward (delegate) credentials
to the server. The default is B<no>.Forward (delegate) credentials
to the server. The default is B<no>. I< Optional. Type boolean. >
=over 4
=item upstream_default value :
no
=back
=head2 GSSAPIRenewalForcesRekey
If set to B<yes> then
renewal of the client’s GSSAPI credentials will force
the rekeying of the ssh connection. With a compatible
server, this can delegate the renewed credentials to a
session on the server. The default is B<no>.If set to B<yes> then
renewal of the client’s GSSAPI credentials will force
the rekeying of the ssh connection. With a compatible
server, this can delegate the renewed credentials to a
session on the server. The default is B<no>. I< Optional. Type boolean. >
=over 4
=item upstream_default value :
no
=back
lib/Config/Model/models/Ssh/HostElement.pl view on Meta::CPAN
target hostname.If set, specifies the GSSAPI
server identity that ssh should expect when connecting to
the server. The default is unset, which means that the
expected GSSAPI server identity will be determined from the
target hostname.',
'type' => 'leaf',
'value_type' => 'uniline'
},
'GSSAPIDelegateCredentials',
{
'description' => 'Forward (delegate) credentials
to the server. The default is B<no>.Forward (delegate) credentials
to the server. The default is B<no>.',
'type' => 'leaf',
'upstream_default' => 'no',
'value_type' => 'boolean',
'write_as' => [
'no',
'yes'
]
},
'GSSAPIRenewalForcesRekey',
{
'description' => "If set to B<yes> then
renewal of the client\x{2019}s GSSAPI credentials will force
the rekeying of the ssh connection. With a compatible
server, this can delegate the renewed credentials to a
session on the server. The default is B<no>.If set to B<yes> then
renewal of the client\x{2019}s GSSAPI credentials will force
the rekeying of the ssh connection. With a compatible
server, this can delegate the renewed credentials to a
session on the server. The default is B<no>.",
'type' => 'leaf',
'upstream_default' => 'no',
'value_type' => 'boolean',
'write_as' => [
'no',
'yes'
]
},
'GSSAPITrustDns',
lib/Config/Model/models/Ssh/HostElement.pod view on Meta::CPAN
the server. The default is unset, which means that the
expected GSSAPI server identity will be determined from the
target hostname.If set, specifies the GSSAPI
server identity that ssh should expect when connecting to
the server. The default is unset, which means that the
expected GSSAPI server identity will be determined from the
target hostname. I< Optional. Type uniline. >
=head2 GSSAPIDelegateCredentials
Forward (delegate) credentials
to the server. The default is B<no>.Forward (delegate) credentials
to the server. The default is B<no>. I< Optional. Type boolean. >
=over 4
=item upstream_default value :
no
=back
=head2 GSSAPIRenewalForcesRekey
If set to B<yes> then
renewal of the client’s GSSAPI credentials will force
the rekeying of the ssh connection. With a compatible
server, this can delegate the renewed credentials to a
session on the server. The default is B<no>.If set to B<yes> then
renewal of the client’s GSSAPI credentials will force
the rekeying of the ssh connection. With a compatible
server, this can delegate the renewed credentials to a
session on the server. The default is B<no>. I< Optional. Type boolean. >
=over 4
=item upstream_default value :
no
=back
lib/Config/Model/models/Sshd.pl view on Meta::CPAN
features, including X11, L<ssh-agent(1)>, TCP and StreamLocal.
This option overrides all other forwarding-related options
and may simplify restricted configurations.',
'type' => 'leaf',
'value_type' => 'uniline'
},
'ExposeAuthInfo',
{
'description' => 'B<ExposeAuthInfo>Writes a temporary file
containing a list of authentication methods and public
credentials (e.g. keys) used to authenticate the user. The
location of the file is exposed to the user session through
the SSH_USER_AUTH environment variable. The default is
B<no>.',
'type' => 'leaf',
'upstream_default' => 'no',
'value_type' => 'boolean',
'write_as' => [
'no',
'yes'
]
lib/Config/Model/models/Sshd.pl view on Meta::CPAN
'upstream_default' => 'no',
'value_type' => 'boolean',
'write_as' => [
'no',
'yes'
]
},
'GSSAPICleanupCredentials',
{
'description' => "B<GSSAPICleanupCredentials>Specifies whether to
automatically destroy the user\x{2019}s credentials cache on
logout. The default is B<yes>.",
'type' => 'leaf',
'upstream_default' => 'yes',
'value_type' => 'boolean',
'write_as' => [
'no',
'yes'
]
},
'GSSAPIStrictAcceptorCheck',
lib/Config/Model/models/Sshd.pl view on Meta::CPAN
'upstream_default' => 'yes',
'value_type' => 'boolean',
'write_as' => [
'no',
'yes'
]
},
'GSSAPIStoreCredentialsOnRekey',
{
'description' => "B<GSSAPIStoreCredentialsOnRekey>Controls whether the
user\x{2019}s GSSAPI credentials should be updated following
a successful connection rekeying. This option can be used to
accepted renewed or updated credentials from a compatible
client. The default is B<no>.",
'type' => 'leaf',
'upstream_default' => 'no',
'value_type' => 'boolean',
'write_as' => [
'no',
'yes'
]
},
'HostCertificate',
lib/Config/Model/models/Sshd.pod view on Meta::CPAN
B<DisableForwarding>Disables all forwarding
features, including X11, L<ssh-agent(1)>, TCP and StreamLocal.
This option overrides all other forwarding-related options
and may simplify restricted configurations. I< Optional. Type uniline. >
=head2 ExposeAuthInfo
B<ExposeAuthInfo>Writes a temporary file
containing a list of authentication methods and public
credentials (e.g. keys) used to authenticate the user. The
location of the file is exposed to the user session through
the SSH_USER_AUTH environment variable. The default is
B<no>. I< Optional. Type boolean. >
=over 4
=item upstream_default value :
no
lib/Config/Model/models/Sshd.pod view on Meta::CPAN
no
=back
=head2 GSSAPICleanupCredentials
B<GSSAPICleanupCredentials>Specifies whether to
automatically destroy the user’s credentials cache on
logout. The default is B<yes>. I< Optional. Type boolean. >
=over 4
=item upstream_default value :
yes
=back
lib/Config/Model/models/Sshd.pod view on Meta::CPAN
yes
=back
=head2 GSSAPIStoreCredentialsOnRekey
B<GSSAPIStoreCredentialsOnRekey>Controls whether the
user’s GSSAPI credentials should be updated following
a successful connection rekeying. This option can be used to
accepted renewed or updated credentials from a compatible
client. The default is B<no>. I< Optional. Type boolean. >
=over 4
=item upstream_default value :
no
=back
lib/Config/Model/models/SystemSsh.pod view on Meta::CPAN
the server. The default is unset, which means that the
expected GSSAPI server identity will be determined from the
target hostname.If set, specifies the GSSAPI
server identity that ssh should expect when connecting to
the server. The default is unset, which means that the
expected GSSAPI server identity will be determined from the
target hostname. I< Optional. Type uniline. >
=head2 GSSAPIDelegateCredentials
Forward (delegate) credentials
to the server. The default is B<no>.Forward (delegate) credentials
to the server. The default is B<no>. I< Optional. Type boolean. >
=over 4
=item upstream_default value :
no
=back
=head2 GSSAPIRenewalForcesRekey
If set to B<yes> then
renewal of the client’s GSSAPI credentials will force
the rekeying of the ssh connection. With a compatible
server, this can delegate the renewed credentials to a
session on the server. The default is B<no>.If set to B<yes> then
renewal of the client’s GSSAPI credentials will force
the rekeying of the ssh connection. With a compatible
server, this can delegate the renewed credentials to a
session on the server. The default is B<no>. I< Optional. Type boolean. >
=over 4
=item upstream_default value :
no
=back
xt/ssh_config.html view on Meta::CPAN
<p style="margin-left:17%;">If set, specifies the GSSAPI
server identity that ssh should expect when connecting to
the server. The default is unset, which means that the
expected GSSAPI server identity will be determined from the
target hostname.</p>
<p style="margin-top: 1em"><b>GSSAPIDelegateCredentials</b></p>
<p style="margin-left:17%;">Forward (delegate) credentials
to the server. The default is <b>no</b>.</p>
<p style="margin-top: 1em"><b>GSSAPIRenewalForcesRekey</b></p>
<p style="margin-left:17%;">If set to <b>yes</b> then
renewal of the client’s GSSAPI credentials will force
the rekeying of the ssh connection. With a compatible
server, this can delegate the renewed credentials to a
session on the server. The default is <b>no</b>.</p>
<p style="margin-top: 1em"><b>GSSAPITrustDns</b></p>
<p style="margin-left:17%;">Set to <b>yes</b> to indicate
that the DNS is trusted to securely canonicalize the name of
the host being connected to. If <b>no</b>, the hostname
entered on the command line will be passed untouched to the
GSSAPI library. The default is <b>no</b>.</p>
xt/sshd_config.html view on Meta::CPAN
<p style="margin-left:17%;">Disables all forwarding
features, including X11, ssh-agent(1), TCP and StreamLocal.
This option overrides all other forwarding-related options
and may simplify restricted configurations.</p>
<p style="margin-top: 1em"><b>ExposeAuthInfo</b></p>
<p style="margin-left:17%;">Writes a temporary file
containing a list of authentication methods and public
credentials (e.g. keys) used to authenticate the user. The
location of the file is exposed to the user session through
the SSH_USER_AUTH environment variable. The default is
<b>no</b>.</p>
<p style="margin-top: 1em"><b>FingerprintHash</b></p>
<p style="margin-left:17%;">Specifies the hash algorithm
used when logging key fingerprints. Valid options are:
<b>md5</b> and <b>sha256</b>. The default is
<b>sha256</b>.</p>
xt/sshd_config.html view on Meta::CPAN
<p style="margin-left:17%;">Specifies whether key exchange
based on GSSAPI is allowed. GSSAPI key exchange
doesn’t rely on ssh keys to verify host identity. The
default is <b>no</b>.</p>
<p style="margin-top: 1em"><b>GSSAPICleanupCredentials</b></p>
<p style="margin-left:17%;">Specifies whether to
automatically destroy the user’s credentials cache on
logout. The default is <b>yes</b>.</p>
<p style="margin-top: 1em"><b>GSSAPIStrictAcceptorCheck</b></p>
<p style="margin-left:17%;">Determines whether to be strict
about the identity of the GSSAPI acceptor a client
authenticates against. If set to <b>yes</b> then the client
must authenticate against the host service on the current
hostname. If set to <b>no</b> then the client may
authenticate against any service key stored in the
machine’s default store. This facility is provided to
assist with operation on multi homed machines. The default
is <b>yes</b>.</p>
<p style="margin-top: 1em"><b>GSSAPIStoreCredentialsOnRekey</b></p>
<p style="margin-left:17%;">Controls whether the
user’s GSSAPI credentials should be updated following
a successful connection rekeying. This option can be used to
accepted renewed or updated credentials from a compatible
client. The default is <b>no</b>.</p>
<p style="margin-top: 1em"><b>HostbasedAcceptedKeyTypes</b></p>
<p style="margin-left:17%;">Specifies the key types that
will be accepted for hostbased authentication as a list of
comma-separated patterns. Alternately if the specified value
begins with a ’+’ character, then the specified
key types will be appended to the default set instead of
( run in 0.285 second using v1.01-cache-2.11-cpan-4d50c553e7e )