SSHD-CHECK-CONF(5) SSH2 SSHD-CHECK-CONF(5)
sshd-check-conf - checks what your configuration allows or
denies based on the incoming username and/or hostname
sshd-check-conf [-d debug_level] [-v ] [-V ] [-h ]
[-f config_file] [[user@]host ...]
sshd-check-conf checks how sshd2 will react to an incoming
user, based on the username and the remote hostname given
as parameters. Currently, the parameters AllowHosts,
DenyHosts, AllowSHosts, DenySHosts, AllowUsers, DenyUsers,
AllowGroups, DenyGroups, ChrootUsers, ChrootGroups,
AllowTcpForwardingForGroups, and DenyTcpForwardingFor-
Groups are checked.
Debug mode. The debugging level is either a number
or a comma-separated list of assignments of the
format ModulePattern=debug_level, for example
-v Enables verbose mode. Displays verbose debugging
messages. Equivalent to -d 2.
-V Displays version string.
-h Displays a short help on command-line options.
Specifies the name of the configuration file. The
default is /etc/ssh2/sshd2_config or
$HOME/.ssh2/sshd2_config, depending on who is run-
ning the program, root or normal user.
Any non-options gived on the command line will be regarded
as [user@]host patterns (that is, the user part is
optional). If the host part is a valid IP address, it is
looked up from DNS. Otherwise it is interpreted as a host
name and the corresponding IP addresses will be queried
You can specify multiple patterns on the command line.
If no patterns are specified on the command line, sshd-
check-conf will go into interactive mode where the
patterns can be given one at a time and they will be
You may also specify one command in interactive mode,
"dump". This command dumps the configuration (with subcon-
figurations amended) for the previous pattern.
% sshd-check-conf -f /etc/ssh2/sshd2_config firstname.lastname@example.org
% sshd-check-conf -f /etc/ssh2/sshd2_config
SSH Communications Security Corp.
For more information, see http://www.ssh.com.
sshd2(8), sshd2_config(5), sshd2_subconfig(5)