aboutsummaryrefslogtreecommitdiffstats
path: root/lib/ssh/doc
diff options
context:
space:
mode:
authorErlang/OTP <[email protected]>2015-04-22 13:39:46 +0200
committerErlang/OTP <[email protected]>2015-04-22 13:39:46 +0200
commitda3d366a75aa089ef7594e1e28940637f16c1682 (patch)
tree1db419e58b7f5c86fe5acc4c9d2b92e8b713caaa /lib/ssh/doc
parent871c5af1e44a423106d644ca6e70900ad21d41b4 (diff)
parent20707ef7688bed44fec39c4673a8823211e94149 (diff)
downloadotp-da3d366a75aa089ef7594e1e28940637f16c1682.tar.gz
otp-da3d366a75aa089ef7594e1e28940637f16c1682.tar.bz2
otp-da3d366a75aa089ef7594e1e28940637f16c1682.zip
Merge branch 'hans/ssh/banner_grabbing/OTP-12659' into maint-17
* hans/ssh/banner_grabbing/OTP-12659: ssh: added id_string option for server and client
Diffstat (limited to 'lib/ssh/doc')
-rw-r--r--lib/ssh/doc/src/ssh.xml17
1 files changed, 17 insertions, 0 deletions
diff --git a/lib/ssh/doc/src/ssh.xml b/lib/ssh/doc/src/ssh.xml
index 0e7e3848ad..72dafc0c09 100644
--- a/lib/ssh/doc/src/ssh.xml
+++ b/lib/ssh/doc/src/ssh.xml
@@ -180,6 +180,15 @@
<item>
<p>If true, the client will not print out anything on authorization.</p>
</item>
+
+ <tag><c><![CDATA[{id_string, random | string()}]]></c></tag>
+ <item>
+ <p>The string that the client presents to a connected server initially. The default value is "Erlang/VSN" where VSN is the ssh application version number.
+ </p>
+ <p>The value <c>random</c> will cause a random string to be created at each connection attempt. This is to make it a bit more difficult for a malicious peer to find the ssh software brand and version.
+ </p>
+ </item>
+
<tag><c><![CDATA[{fd, file_descriptor()}]]></c></tag>
<item>
<p>Allow an existing file descriptor to be used
@@ -344,6 +353,14 @@
</p>
</item>
+ <tag><c><![CDATA[{id_string, random | string()}]]></c></tag>
+ <item>
+ <p>The string the daemon will present to a connecting peer initially. The default value is "Erlang/VSN" where VSN is the ssh application version number.
+ </p>
+ <p>The value <c>random</c> will cause a random string to be created at each connection attempt. This is to make it a bit more difficult for a malicious peer to find the ssh software brand and version.
+ </p>
+ </item>
+
<tag><c><![CDATA[{key_cb, atom()}]]></c></tag>
<item>
<p>Module implementing the behaviour <seealso marker="ssh_server_key_api">ssh_server_key_api</seealso>.