Your browser does not allow storing cookies. We recommend enabling them.

SSH

sshd-check-conf

sshd-check-conf — checks what your configuration allows or denies based on the incoming user name and/or host name

Synopsis

sshd-check-conf [-d debug_level] [-v] [-V] [-h] [-f config_file] [[user@]host...]

Description

sshd-check-conf checks how sshd2 will react to an incoming user, based on the user name and the remote host name given as parameters. Currently, the parameters AllowHosts, DenyHosts, AllowSHosts, DenySHosts, AllowUsers, DenyUsers, AllowGroups, DenyGroups, ChRootUsers, ChRootGroups, AllowTcpForwardingForUsers, DenyTcpForwardingForUsers, AllowTcpForwardingForGroups, and DenyTcpForwardingForGroups are checked.

Options

The following options are available:

-d debug_level_spec

Debug mode. The debugging level is either a number or a comma-separated list of assignments of the format ModulePattern=debug_level, for example "*=10,sshd2=2".

-v

Enables verbose mode. Displays verbose debugging messages. Equivalent to -d 2.

-V

Displays version string.

-h

Displays a short help on command-line options.

-f configuration_file

Specifies the name of the configuration file. The default is /opt/tectia/etc/sshd2_config or $HOME/.ssh2/sshd2_config, depending on who is running the program, root or normal user.

Behavior

Any non-options given on the command line will be regarded as [user@]host patterns (that is, the user part is optional). If the host part is a valid IP address, it is looked up from DNS. Otherwise it is interpreted as a host name and the corresponding IP addresses will be queried from DNS.

You can specify multiple patterns on the command line.

If no patterns are specified on the command line, sshd-check-conf will go into interactive mode where the patterns can be given one at a time and they will be checked.

You may also specify one command in interactive mode, "dump". This command dumps the configuration (with subconfigurations amended) for the previous pattern.

Examples

% sshd-check-conf -f /opt/tectia/etc/sshd2_config testuser@example.com

% sshd-check-conf -f /opt/tectia/etc/sshd2_config user1@example.org user2@example.com

% sshd-check-conf



Want to see how PrivX can help your organisation?

Are you a DEVELOPER accessing cloud hosts, are you a IT ADMIN managing access & credentials in your corporation, are you BUSINESS MANAGER and want to save money or are you responsible of IT SECURITY in DevOps