aboutsummaryrefslogtreecommitdiff
diff options
context:
space:
mode:
authorDan Fandrich <dan@coneharvesters.com>2007-03-27 04:01:39 +0000
committerDan Fandrich <dan@coneharvesters.com>2007-03-27 04:01:39 +0000
commit282127fbfffefb2262cdb964bd29f660d05e3a95 (patch)
treed25b46f377a754acedc6171c49b634413f540c26
parentd49e9fad190ba507d80e0730480f378f1de7485b (diff)
Tighten up a few more OpenSSH options
-rw-r--r--tests/README2
-rw-r--r--tests/sshserver.pl4
2 files changed, 5 insertions, 1 deletions
diff --git a/tests/README b/tests/README
index 11d42d415..fc31405e7 100644
--- a/tests/README
+++ b/tests/README
@@ -10,7 +10,7 @@ Requires:
perl (and a unix-style shell)
diff (when a test fail, a diff is shown)
stunnel (for HTTPS and FTPS tests)
- sshd (for SCP and SFTP tests; OpenSSH ver. 3.9 is known to work)
+ sshd (for SCP and SFTP tests; OpenSSH ver. 3.8 is known to work)
TCP ports used:
diff --git a/tests/sshserver.pl b/tests/sshserver.pl
index 07762c2b1..83fdbc7af 100644
--- a/tests/sshserver.pl
+++ b/tests/sshserver.pl
@@ -91,6 +91,8 @@ print FILE <<EOF
# This is a generated file! Do not edit!
# OpenSSH sshd configuration file for curl testing
AllowUsers $username
+DenyUsers
+DenyGroups
AuthorizedKeysFile $path/curl_client_key.pub
HostKey $path/curl_host_dsa_key
PidFile $path/.ssh.pid
@@ -98,6 +100,7 @@ Port $port
ListenAddress localhost
Protocol 2
AllowTcpForwarding no
+GatewayPorts no
HostbasedAuthentication no
IgnoreRhosts yes
IgnoreUserKnownHosts yes
@@ -111,6 +114,7 @@ StrictModes no
Subsystem sftp $sftp
UseLogin no
X11Forwarding no
+UsePrivilegeSeparation no
# Newer OpenSSH options
UsePam no
UseDNS no