UsePrivilegeSeparation defaults to sandbox now.

author sobrado <sobrado@openbsd.org>

Wed, 7 Oct 2015 14:45:30 +0000 (14:45 +0000)

committer sobrado <sobrado@openbsd.org>

Wed, 7 Oct 2015 14:45:30 +0000 (14:45 +0000)
author sobrado <sobrado@openbsd.org>
Wed, 7 Oct 2015 14:45:30 +0000 (14:45 +0000)
committer sobrado <sobrado@openbsd.org>
Wed, 7 Oct 2015 14:45:30 +0000 (14:45 +0000)
diff --git a/usr.bin/ssh/sshd_config.5 b/usr.bin/ssh/sshd_config.5

index a5953d7..399013e 100644 (file)
--- a/usr.bin/ssh/sshd_config.5
+++ b/usr.bin/ssh/sshd_config.5
@@ -33,8 +33,8 @@
  .\" (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF
  .\" THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
  .\"
-.\" $OpenBSD: sshd_config.5,v 1.212 2015/09/11 03:13:36 djm Exp $
-.Dd $Mdocdate: September 11 2015 $
+.\" $OpenBSD: sshd_config.5,v 1.213 2015/10/07 14:45:30 sobrado Exp $
+.Dd $Mdocdate: October 7 2015 $
  .Dt SSHD_CONFIG 5
  .Os
  .Sh NAME
@@ -1564,14 +1564,19 @@ After successful authentication, another process will be created that has
  the privilege of the authenticated user.
  The goal of privilege separation is to prevent privilege
  escalation by containing any corruption within the unprivileged processes.
-The default is
-.Dq yes .
+The argument must be
+.Dq yes ,
+.Dq no ,
+or
+.Dq sandbox .
  If
  .Cm UsePrivilegeSeparation
  is set to
  .Dq sandbox
  then the pre-authentication unprivileged process is subject to additional
  restrictions.
+The default is
+.Dq sandbox .
  .It Cm VersionAddendum
  Optionally specifies additional text to append to the SSH protocol banner
  sent by the server upon connection.
author	sobrado <sobrado@openbsd.org>
	Wed, 7 Oct 2015 14:45:30 +0000 (14:45 +0000)
committer	sobrado <sobrado@openbsd.org>
	Wed, 7 Oct 2015 14:45:30 +0000 (14:45 +0000)