sshd-check-conf(4)sshd-check-conf(4)NAMEsshd-check-conf - Check what the configuration allows or denies based
on incoming user and/or host name
SYNOPSISsshd-check-conf [-d debug_level] [-v] [-V] [-h] [-f config_file]
[[user@] host ..]
OPTIONS
Debug mode. The debugging level is either a number or a comma-sepa‐
rated list of assignments "ModulePattern=debug_level". Enable verbose
mode. Display verbose debugging messages. Equal to '-d 2'. Display
version string. Display a short help on command-line options. Speci‐
fies the name of the configuration file. The default is
/etc/ssh2/sshd2_config or $HOME/.ssh2/sshd2_config, depending on who is
running the program, root or normal user.
DESCRIPTION
The shd-check-conf file checks how sshd2 will react to an incoming
user, based on the user name and the remote host name given as parame‐
ters. The following parameters are checked: AllowHosts DenyHosts Allow‐
SHosts DenySHosts AllowUsers DenyUsers AllowGroups DenyGroups Chroo‐
tUsers ChrootGroups AllowTcpForwardingForUsers DenyTcpForwarding‐
ForUsers AllowTcpForwardingForGroups DenyTcpForwardingForGroups
NOTES
Any non-options presented on the command line will be regarded as
[user@]host patterns (that is, the user part is optional). If the host
part is a valid IP address, it is looked up from DNS. Otherwise, it is
interpreted as a host name and the corresponding IP addresses will be
queried from DNS.
You can specify multiple patterns on the command line.
If no patterns are specified on the command line, sshd-check-conf will
go into interactive mode, where the patterns can be given one at a
time, and they will be checked. The dump command can be used in inter‐
active mode. This command dumps the configuration (with subconfigs
amended) for the previous pattern given.
EXAMPLES
% sshd-check-conf-f /etc/ssh2/sshd2_config sjl@ssh.com % sshd-check-
conf -f /etc/ssh2/sshd2_config luser1@evil.org luser2@aol.com % sshd-
check-conf
LEGAL NOTICES
SSH is a registered trademark of SSH Communication Security Ltd.
SEE ALSO
Commands: sshd2(8)
Others: sshd2_config(4), sshd2_subconfig(4)sshd-check-conf(4)