Manualshelf

HP-UX Secure Shell Getting Started Guide

ManualsBrandsHP ManualsSoftwareHP-UX 11i Secure Shell Software
61626364656667686970
A Configuration Files and Directives
This appendix describes the configuration files that are created upon installing HP-UX Secure
Shell. This appendix also describes various configuration directives available in the HP-UX Secure
Shell server and client configuration files.
This chapter addresses the following topics:
“HP-UX Secure Shell Configuration Files” (page 67)
“Server Configuration Directives” (page 67)
“Client Configuration Directives” (page 83)
HP-UX Secure Shell Configuration Files
When you install HP-UX Secure Shell, the configuration files are automatically created on the
system. The configuration files contain the directive settings for both the server and the clients.
Table A-1 lists the HP-UX Secure Shell server and client configuration files.
Table A-1 Configuration Files
File NameFile
/opt/ssh/etc/sshd_config
Server configuration file
/opt/ssh/etc/ssh_config
Client configuration file
You can use the default settings listed in these files, or you can modify these values according
to your needs.
Server Configuration Directives
The /etc/ssh/sshd_config file is the systemwide server configuration file for HP-UX Secure
Shell. This configuration file enables you to set options that modify the operation of the sshd
daemon. This file contains configuration directives in the form of keyword-value pairs.
NOTE: The keywords are case sensitive.
AcceptEnv
Use this directive to specify the environment variables sent by the client that must be copied into
the session environment. Specify variables using their names. Variables can contain the wildcard
characters star (*) and question mark (?). Use white space to separate multiple environment
variables. You can spread multiple environment variables across multiple AcceptEnv directives.
The AcceptEnv directive is available only for the SSH-2 protocol.
By default, HP-UX Secure Shell does not pass any environment variables.
NOTE: Some environment variables can bypass the restricted user environment, so you must
be careful when using the AcceptEnv directive.
For example:
AcceptEnv yes
AllowGroups
Use this directive to enable login only for users whose primary or supplementary group list
matches a specified string. The star (*) and question mark (?) characters can be used as wildcards
in the strings. Enter the AllowGroups directive followed by a list of group name strings, separated
by spaces. Only group names are valid. By default, login is enabled for all groups.
By default, this directive is not specified in the sshd_config file.
HP-UX Secure Shell Configuration Files 67