sshd-check-conf - Checks what the configuration allows or
denies based on the incoming user and/or the host name
sshd-check-conf [-d debug_level] [-v] [-V] [-h] [-f config_file]
[[user@] host ..]
Debugs the server. The debugging level is either a number
or a comma-separated list of assignments. Enables the
verbose mode, and displays verbose debugging messages.
Displays the version string. Displays a short help file
on command-line options. Specifies the name of the configuration
file. The default is /etc/ssh2/sshd2_config or
$HOME/.ssh2/sshd2_config, depending on who is running the
program, root or normal user.
The sshd-check-conf command checks how the sshd2 daemon
will react to an incoming user, based on the user name and
the remote host name given as parameters. The following
parameters are checked: AllowHosts DenyHosts AllowSHosts
DenySHosts AllowUsers DenyUsers AllowGroups DenyGroups
ChrootUsers ChrootGroups AllowTcpForwardingForUsers
Any nonoptions presented on the command line will be
regarded as [user@]host patterns (that is, the user part
is optional). If the host part is a valid IP address, it
is looked up from DNS. Otherwise, it is interpreted as a
host name, and the corresponding IP addresses will be
queried from DNS.
You can specify multiple patterns on the command line.
If no patterns are specified on the command line, sshdcheck-conf
will go into interactive mode, where the patterns
can be given one at a time, and they will be
checked. The dump command can be used in interactive
mode. This command dumps the configuration (with subconfigurations
amended) for the previous pattern given.
% sshd-check-conf -f /etc/ssh2/sshd2_config email@example.com %
sshd-check-conf -f /etc/ssh2/sshd2_config firstname.lastname@example.org
email@example.com % sshd-check-conf
SSH is a registered trademark of SSH Communication Security
Files: sshd2_config(4), sshd2_subconfig(4)
[ Back ]