Server Features: sshd
The OpenSSH server has new features pertaining to logging, listening addresses, and password and account expiration warnings.
Logging of Access Control Violations
When authentication attempts are rejected by user-level access
control (AllowUsers
, DenyUsers
) or group-level access control
(AllowGroups
, DenyGroups
), sshd will
log an informative message about it.
AddressFamily Keyword
The AddressFamily
configuration keyword, previously available to clients only, can now
be configured for the SSH server as well. If your server supports both
IPv4 and IPv6, this lets you control on which sort of addresses
sshd will listen.
Password and Account Expiration Warnings
If your password or account is going to expire (on operating systems that support expiration), sshd will now warn you in advance when you authenticate—for example.:
Your password will expire in 6 days Your account will expire in 11 days
Get SSH, The Secure Shell: The Definitive Guide, 2nd Edition now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.