User Tools

Site Tools


ssh_config

If you want to send us your comments, please do so. Thanks
More on comments


ssh_config

The client side config file

All options

OptionSettingRemark
IgnoreUnknown Put in front so all consecutive options are checked when this option is activated
AddKeysToAgentnoDefault
AddressFamilyinetIPv4 only. Default: any
BatchModenoDefault
BindAddress
CanonicalDomains
CanonicalizeFallbackLocal
CanonicalizeHostnamenoDefault
CanonicalizeMaxDots
CanonicalizePermittedCNAMEs
CertificateFile
CertificateFile
ChallengeResponseAuthenticationnoDefault
CheckHostIPyesDefault
Cipherblowfish, 3desDefault
Cipherschacha20-poly1305@openssh.com,aes128-ctr,aes192-ctr,aes256-ctr,aes128-gcm@openssh.com,aes256-gcm@openssh.com,aes128-cbc,aes192-cbc,aes256-cbcDefault. Comma separated list
ClearAllForwardingsnoDefault. Comma separated list
CompressionnoDefault
CompressionLevel6Default
ConnectionAttempts1Default
ConnectTimeout Default: Follow the system TCP timeout
ControlMasternoDefault
ControlPath
ControlPersist
DynamicForward
EnableSSHKeysignnoDefault
EscapeChar~Default
ExitOnForwardFailurenoDefault
FingerprintHashsha256Default
ForwardAgentnoDefault
ForwardX11
ForwardX11Timeout
ForwardX11Trusted
GatewayPorts
GlobalKnownHostsFile
GSSAPIAuthenticationyesDefault for the Debian openssh-client. Otherwise the default is “no”
GSSAPIKeyExchange
GSSAPIClientIdentity
GSSAPIServerIdentity
GSSAPIDelegateCredentials
GSSAPIRenewalForcesRekey
GSSAPITrustDns
HashKnownHostsyesDefault for the Debian openssh-client. Otherwise the default is “no”
Host*Allow all
HostbasedAuthenticationnoDefault
HostbasedKeyTypesecdsa-sha2-nistp256-cert-v01@openssh.com,ecdsa-sha2-nistp384-cert-v01@openssh.com,ecdsa-sha2-nistp521-cert-v01@openssh.com,ssh-ed25519-cert-v01@openssh.com,ssh-rsa-cert-v01@openssh.com,ecdsa-sha2-nistp256,ecdsa-sha2-nistp384,ecdsa-sha2-nistp521,ssh-ed25519,ssh-rsaDefault. Comma separated list
HostKeyAlgorithmsecdsa-sha2-nistp256-cert-v01@openssh.com,ecdsa-sha2-nistp384-cert-v01@openssh.com,ecdsa-sha2-nistp521-cert-v01@openssh.com,ssh-ed25519-cert-v01@openssh.com,ssh-rsa-cert-v01@openssh.com,ecdsa-sha2-nistp256,ecdsa-sha2-nistp384,ecdsa-sha2-nistp521,ssh-ed25519,ssh-rsaDefault. Comma separated list
HostKeyAlias
HostName
IdentitiesOnlynoDefault
IdentityAgent
IdentityFile~/.ssh/id_dsa, ~/.ssh/id_ecdsa, ~/.ssh/id_ed25519 and ~/.ssh/id_rsaDefault. Protocol version 2
Include
IPQoSlowdelay throughputDefault
KbdInteractiveAuthenticationyesDefault
KbdInteractiveDevices OpenSSH server: zero or more of: bsdauth, pam, skey
KexAlgorithmscurve25519-sha256,curve25519-sha256@libssh.org,ecdh-sha2-nistp256,ecdh-sha2-nistp384,ecdh-sha2-nistp521,diffie-hellman-group-exchange-sha256,diffie-hellman-group-exchange-sha1,diffie-hellman-group14-sha1Default. Comma separated list
LocalCommand
LocalForward
LogLevelINFODefault
MACsumac-64-etm@openssh.com,umac-128-etm@openssh.com,hmac-sha2-256-etm@openssh.com,hmac-sha2-512-etm@openssh.com,hmac-sha1-etm@openssh.com,umac-64@openssh.com,umac-128@openssh.com,hmac-sha2-256,hmac-sha2-512,hmac-sha1Default
Match
NoHostAuthenticationForLocalhostnoDefault
NumberOfPasswordPrompts3Default
PasswordAuthenticationyesDefault
PermitLocalCommandnoDefault
PKCS11Provider
Port22Default
PreferredAuthenticationsgssapi-with-mic,hostbased,publickey,keyboard-interactive,passwordDefault
Protocol2Default
ProxyCommand
ProxyJump
ProxyUseFdpassnoDefault
PubkeyAcceptedKeyTypesecdsa-sha2-nistp256-cert-v01@openssh.com,ecdsa-sha2-nistp384-cert-v01@openssh.com,ecdsa-sha2-nistp521-cert-v01@openssh.com,ssh-ed25519-cert-v01@openssh.com,ssh-rsa-cert-v01@openssh.com,ecdsa-sha2-nistp256,ecdsa-sha2-nistp384,ecdsa-sha2-nistp521,ssh-ed25519,ssh-rsaDefault. Comma separated list
PubkeyAuthenticationyesDefault
RekeyLimitnoneDefault
RemoteForwardBind to loopback addressesDefault
RequestTTYno
RevokedHostKeys
RhostsRSAAuthenticationnoDefault
RSAAuthenticationyesDefault
SendEnvLANG LC_*Default for the Debian openssh-client Otherwise the default is ““
ServerAliveCountMax3Default
ServerAliveInterval0
StreamLocalBindMask0177Default
StreamLocalBindUnlinknoDefault
StrictHostKeyCheckingaskDefault
TCPKeepAliveyesDefault
TunnelnoDefault
TunnelDeviceany:anyDefault
UpdateHostKeysnoDefault
UsePrivilegedPortnoDefault
User User to log in as
UserKnownHostsFile~/.ssh/known_hosts, ~/.ssh/known_hosts2Default
VerifyHostKeyDNSnoDefault
VisualHostKeynoDefault
XAuthLocation/usr/bin/xauthDefault

Main subjects on this wiki: Linux, Debian, HTML, Microcontrollers, Privacy

RSS
Disclaimer
Privacy statement
Bugs statement
Cookies
Copyright © : 2014 - 2022 Webevaluation.nl and the authors
Changes reserved.

This website uses cookies. By using the website, you agree with storing cookies on your computer. Also you acknowledge that you have read and understand our Privacy Policy. If you do not agree leave the website.More information about cookies
ssh_config.txt · Last modified: 09-05-2020 18:03 by wim