HP NonStop SSH Reference Manual Configuring and Running SSH2 • 107
SSHCTLAUDIT
Use this parameter to specify whether a newly created user database will be set up as an audited file.
Parameter Syntax
SSHCTLAUDIT [TRUE|FALSE]
Arguments
[TRUE|FALSE]
Specifies whether a new user data base file will be set up as an audited file. Following are the possible
arguments:
o TRUE: file will be created as audited file.
o FALSE: file will not be created as audited file.
Considerations
• See parameter "SSHCTL" for details about the user data base.
Default
If omitted, SSH2 will use a value of TRUE.
Example
SSHCTLAUDIT FALSE
SSHKEEPALIVETIME
Use this parameter to control the frequency of SSH "keepalive" messages.
Parameter Syntax
SSHKEEPALIVETIME seconds
Arguments
seconds
Defines the idle time in seconds after which an SSH_MSG_IGNORE message is sent to the remote client. A
value of 0 disables sending SSH_MSG_IGNORE messages.
Default
The default is 60 (1 minute).
Considerations
• SSHKEEPALIVETIME controls "keepalive" messages on the secure shell protocol level, while
SOCKETKEEPALIVE controls whether keepalive messages should be enabled on TCP socket level.
• Sending these messages on idle sessions is an additional measure of protection against advanced traffic analysis
techniques.
STOREDPASSWORDSONLY
Use this SSH2 parameter to disable the prompt for password during user authentication with method password in
outgoing connections, assuming that the password is stored in the database.
Parameter Syntax
To Next Page
Loading...
Need help?
General