Re: sshd_config question

From: Jeremy Chadwick <koitsu@xxxxxxxxxxx>
Date: Sun, 29 Jun 2008 20:38:41 -0700

On Mon, Jun 30, 2008 at 02:54:57AM +0000, Pollywog wrote:

On Sunday 29 June 2008 23:55:25 Brandon S. Allbery KF8NH wrote:

On 2008 Jun 29, at 19:22, Jeff Richards wrote:

After setting those options I kill -HUP the sshd process.

I thought sshd ignored SIGHUP and you had to actually stop and restart
it to pick up configuration changes.

IIRC, I use SIGHUP in OpenBSD but in FreeBSD, I use /etc/rc.d/sshd restart

According to the OpenSSH sshd manpage, it handles SIGHUP, and re-reads
the configuration file:

sshd rereads its configuration file when it receives a hangup signal,
SIGHUP, by executing itself with the name and options it was started
with, e.g. /usr/sbin/sshd.

I also have

PubkeyAuthentication yes

in my sshd_config but perhaps this is the default, I am unsure.

It is the default, in both sshd_config (server) and ssh_config (client).
See the sshd_config(5) and ssh_config(5) manpages.

In some situations, I also need to edit ~/.ssh/config to allow the connection
and add 'PubkeyAuthentication yes' (on the host initiating the connection).

Possibly you have to do this on machines with an older OpenSSH; I don't
know if the default values were different then.

--
| Jeremy Chadwick jdc at parodius.com |
| Parodius Networking http://www.parodius.com/ |
| UNIX Systems Administrator Mountain View, CA, USA |
| Making life hard for others since 1977. PGP: 4BD6C0CB |

_______________________________________________
freebsd-stable@xxxxxxxxxxx mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-stable
To unsubscribe, send any mail to "freebsd-stable-unsubscribe@xxxxxxxxxxx"

References:
- sshd_config question
  - From: Jeff Richards
- Re: sshd_config question
  - From: Brandon S. Allbery KF8NH
- Re: sshd_config question
  - From: Pollywog

Prev by Date: gjournal question
Next by Date: Re: FreeBSD 7.0 + Xen 3.1 + HVM: Success!
Previous by thread: Re: sshd_config question
Next by thread: sched_ule(1) and sched_4bsd(1)
Index(es):
- Date
- Thread

Relevant Pages

Re: SSH and SFTP
... Implemented conditional configuration in sshd_configusing the ... There are a few 'solutions' but these will require that you have separate sshd ... userA-ssh member of sshAllow ... DenyGroups sftpAllow ...
(SSH)
Understanding OpenSSH_3.7.1p2 - logfile seems not to match configuration
... I thought I had configured OpenSSH's sshd the way that it ... I switched sshd-login to DEBUG to check wether my configuration does ... user root service ssh-connection method password ... As far as I understand it there is a user root that even is asked to ...
(comp.security.ssh)
Re: [SLE] Locating cause of signal
... > A SIGHUP is the signal used when you want a process to restart. ... > I'm not sure on this but pppd may be giving itself a SIGHUP when the line ... I don't have the persist option set in pppd options. ...
(SuSE)
Re: Hosts.allow / deny
... Your configuration should be as follows:-- ... ALLOW: imapd: 127.0.0.1 ... ALLOW: sshd: 10.10.10.2 ... Do you Yahoo!? ...
(RedHat)
Re: [SLE] Locating cause of signal
... On Wednesday 24 September 2003 15:14 pm, Bernd wrote: ... A SIGHUP is the signal used when you want a process to restart. ... I'm not sure on this but pppd may be giving itself a SIGHUP when the line ...
(SuSE)