[Cialug] SSH ports Security Paper - Theron?
Zachary Kotlarek
zach at kotlarek.com
Thu Jul 17 11:01:48 CDT 2008
On Jul 17, 2008, at 10:08 AM, Matthew Nuzum wrote:
> Host *.yourdomain.com
> Port 31337
>
> Unfortunately, openssh doesn't support inheritance (or maybe
> fortunately) so any settings you put in a wildcard have to be manually
> overridden for hosts explicitly declared.
>
> Host mail.yourdomain.com
> Port 31337
> user mailadmin
Maybe it's just a bad example, but what you note here is redundant;
there is no need to "override" the host-level config when it matches
the domain-level config; you only need to override parameters there
are different.
In other words, this configuration:
Host *.yourdomain.com
Port 31337
Host mail.yourdomain.com
Port 31337
user mailadmin
is functionally equivalent to this configuration:
Host mail.yourdomain.com
user mailadmin
Host *.yourdomain.com
Port 31337
Zach
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 1682 bytes
Desc: not available
Url : http://cialug.org/pipermail/cialug/attachments/20080717/ae50897c/smime-0001.bin
More information about the Cialug
mailing list