nhyatt/putty-source
1
0
Fork 0
mirror of https://git.tartarus.org/simon/putty.git synced 2025-01-09 17:38:00 +00:00
Code Issues Projects Releases Wiki Activity

Document -no-trivial-auth more thoroughly.

Browse Source 
(cherry-picked from commit 413398af85)
This commit is contained in:
Jacob Nevins 2021-07-09 23:55:15 +01:00
parent d599e3e687
commit 6db3ac4783
7 changed files with 49 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

9
doc/man-plink.but
View File

@ -203,6 +203,15 @@ which of the agent's keys to use. }
\dd Allow use of an authentication agent. (This option is only necessary \dd Allow use of an authentication agent. (This option is only necessary
to override a setting in a saved session.) to override a setting in a saved session.)
\dt \cw{\-no\-trivial\-auth}
\dd Disconnect from any SSH server which accepts authentication without
ever having asked for any kind of password or signature or token. (You
might want to enable this for a server you always expect to challenge
you, for instance to ensure ensure you don't accidentally type your key
file's passphrase into a compromised server spoofing Plink's passphrase
prompt.)
\dt \cw{\-noshare} \dt \cw{\-noshare}
\dd Don't test and try to share an existing connection, always make \dd Don't test and try to share an existing connection, always make

9
doc/man-pscp.but
View File

@ -155,6 +155,15 @@ which of the agent's keys to use. }
\dd Allow use of an authentication agent. (This option is only necessary \dd Allow use of an authentication agent. (This option is only necessary
to override a setting in a saved session.) to override a setting in a saved session.)
\dt \cw{\-no\-trivial\-auth}
\dd Disconnect from any SSH server which accepts authentication without
ever having asked for any kind of password or signature or token. (You
might want to enable this for a server you always expect to challenge
you, for instance to ensure ensure you don't accidentally type your key
file's passphrase into a compromised server spoofing PSCP's passphrase
prompt.)
\dt \cw{\-hostkey} \e{key} \dt \cw{\-hostkey} \e{key}
\dd Specify an acceptable host public key. This option may be specified \dd Specify an acceptable host public key. This option may be specified

9
doc/man-psftp.but
View File

@ -143,6 +143,15 @@ which of the agent's keys to use. }
\dd Allow use of an authentication agent. (This option is only necessary \dd Allow use of an authentication agent. (This option is only necessary
to override a setting in a saved session.) to override a setting in a saved session.)
\dt \cw{\-no\-trivial\-auth}
\dd Disconnect from any SSH server which accepts authentication without
ever having asked for any kind of password or signature or token. (You
might want to enable this for a server you always expect to challenge
you, for instance to ensure ensure you don't accidentally type your key
file's passphrase into a compromised server spoofing PSFTP's passphrase
prompt.)
\dt \cw{\-hostkey} \e{key} \dt \cw{\-hostkey} \e{key}
\dd Specify an acceptable host public key. This option may be specified \dd Specify an acceptable host public key. This option may be specified

9
doc/man-putty.but
View File

@ -287,6 +287,15 @@ which of the agent's keys to use. }
\dd Allow use of an authentication agent. (This option is only necessary \dd Allow use of an authentication agent. (This option is only necessary
to override a setting in a saved session.) to override a setting in a saved session.)
\dt \cw{\-no\-trivial\-auth}
\dd Disconnect from any SSH server which accepts authentication without
ever having asked for any kind of password or signature or token. (You
might want to enable this for a server you always expect to challenge
you, for instance to ensure ensure you don't accidentally type your key
file's passphrase into a compromised server spoofing PuTTY's passphrase
prompt.)
\dt \cw{\-hostkey} \e{key} \dt \cw{\-hostkey} \e{key}
\dd Specify an acceptable host public key. This option may be specified \dd Specify an acceptable host public key. This option may be specified

2
doc/plink.but
View File

@ -77,6 +77,8 @@ use Plink:
\c -i key private key file for user authentication \c -i key private key file for user authentication
\c -noagent disable use of Pageant \c -noagent disable use of Pageant
\c -agent enable use of Pageant \c -agent enable use of Pageant
\c -no-trivial-auth
\c disconnect if SSH authentication succeeds trivially
\c -noshare disable use of connection sharing \c -noshare disable use of connection sharing
\c -share enable use of connection sharing \c -share enable use of connection sharing
\c -hostkey keyid \c -hostkey keyid

2
doc/pscp.but
View File

@ -62,6 +62,8 @@ use PSCP:
\c -i key private key file for user authentication \c -i key private key file for user authentication
\c -noagent disable use of Pageant \c -noagent disable use of Pageant
\c -agent enable use of Pageant \c -agent enable use of Pageant
\c -no-trivial-auth
\c disconnect if SSH authentication succeeds trivially
\c -hostkey keyid \c -hostkey keyid
\c manually specify a host key (may be repeated) \c manually specify a host key (may be repeated)
\c -batch disable all interactive prompts \c -batch disable all interactive prompts

9
doc/using.but
View File

@ -1014,6 +1014,15 @@ This option is equivalent to the \q{Private key file for
authentication} box in the Auth panel of the PuTTY configuration box authentication} box in the Auth panel of the PuTTY configuration box
(see \k{config-ssh-privkey}). (see \k{config-ssh-privkey}).
\S2{using-cmdline-no-trivial-auth} \i\c{-no-trivial-auth}: disconnect
if SSH authentication succeeds trivially
This option causes PuTTY to abandon an SSH session if the server
accepts authentication without ever having asked for any kind of
password or signature or token.
See \k{config-ssh-notrivialauth} for why you might want this.
\S2{using-cmdline-loghost} \i\c{-loghost}: specify a \i{logical host \S2{using-cmdline-loghost} \i\c{-loghost}: specify a \i{logical host
name} name}