Bug#147201: Bug#345628: man page documents faulty default
On Tuesday 03 January 2006 04:16, you wrote:
> On Mon, Jan 02, 2006 at 05:03:44PM +0100, cobaco (aka Bart Cornelis)
wrote:
> > On Monday 02 January 2006 16:36, you wrote:
> > > On Mon, Jan 02, 2006 at 01:27:08PM +0200, cobaco (aka Bart Cornelis)
> > What suprised me is not the precedence order (that's clear to me,
> > though adding something about it won't hurt), but that the
> > documentation doesn't describe the out-of-the-box situation (i.e. even
> > though I haven't changed anything the documentation doesn't describe
> > the actual situation)
> >
> > So maybe add a section to the man-page saying something like
> > "the debian ssh package ships with the following non-default settings:
> > - option A set to X
> > - option B set to Y
>
> Probably easier and more effective to add a line or two to the
> conffiles /etc/ssh/ssh{d,}_config;
>
> Instead of:
>
> # Package generated configuration file
>
> use
>
> # This file overrides the internal defaults of the ssh{d,} executable.
> # Environment variables and commandline arguments override the values
> # here.
>
> Would this satisfy your request?
not really:
- the preference order between the settings is (and was) clear
- what surprised me was that the man page describes the upstream, builtin
defaults instead of the ones the Debian package ships with (and I expected
the documentation to describe the shipped situation).
To be fair the documentation does say that /etc/ssh/sshd_config
overwrites the defaults. Its just that I hadn't changed that file and thus
didn't expect to have to go check it also.
--
Cheers, cobaco (aka Bart Cornelis)
1. Encrypted mail preferred (GPG KeyID: 0x86624ABB)
2. Plain-text mail recommended since I move html and double
format mails to a low priority folder (they're mainly spam)
pgpzgCs4SHvdG.pgp
Description: PGP signature
Bug#147201: Bug#345628: man page documents faulty default
On Mon, Jan 02, 2006 at 05:03:44PM +0100, cobaco (aka Bart Cornelis) wrote:
> On Monday 02 January 2006 16:36, you wrote:
> > On Mon, Jan 02, 2006 at 01:27:08PM +0200, cobaco (aka Bart Cornelis)
> wrote:
> > > according to sshd_config(5) tels us that UsePAM defaults to 'no', yet a
> > > fresh install of openssh-server has this set to 'yes'
> >
> > #345628 is stronly related to #327886 and loosely related to #147201.
> >
> > It seems clear to me that the default values in ssh{,d}_config are NOT
> > the values encoded in the ssh{,d} binaries,
> > and that the config files (and environment variables, and environment
> > variables) exist to override those defaults (or document the most
> > often-changed parameters).
> obviously (in hindsight)
>
> > Perhaps there should be a section somewhere in ssh manpages section 1
> > and 5 to the effect of "this is the order of precedence of where
> > parameter values come from", and documenting the different places, I
> > don't know .. it wasn't entirely intuitive to me that I could have a
> > ~/.ssh/ssh_config, and I guess it would be nice if this had popped out
> > at me from somewhere other than the FILES section, one day when I had
> > reason to read the ssh manpage in entirety..
>
> What suprised me is not the precedence order (that's clear to me, though
> adding something about it won't hurt), but that the documentation doesn't
> describe the out-of-the-box situation (i.e. even though I haven't changed
> anything the documentation doesn't describe the actual situation)
>
> So maybe add a section to the man-page saying something like
> "the debian ssh package ships with the following non-default settings:
> - option A set to X
> - option B set to Y
Probably easier and more effective to add a line or two to the
conffiles /etc/ssh/ssh{d,}_config;
Instead of:
# Package generated configuration file
use
# This file overrides the internal defaults of the ssh{d,} executable.
# Environment variables and commandline arguments override the values
# here.
Would this satisfy your request?
--
Clear skies,
Justin
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Bug#147201: Bug#345628: man page documents faulty default
On Monday 02 January 2006 16:36, you wrote:
> On Mon, Jan 02, 2006 at 01:27:08PM +0200, cobaco (aka Bart Cornelis)
wrote:
> > according to sshd_config(5) tels us that UsePAM defaults to 'no', yet a
> > fresh install of openssh-server has this set to 'yes'
>
> #345628 is stronly related to #327886 and loosely related to #147201.
>
> It seems clear to me that the default values in ssh{,d}_config are NOT
> the values encoded in the ssh{,d} binaries,
> and that the config files (and environment variables, and environment
> variables) exist to override those defaults (or document the most
> often-changed parameters).
obviously (in hindsight)
> Perhaps there should be a section somewhere in ssh manpages section 1
> and 5 to the effect of "this is the order of precedence of where
> parameter values come from", and documenting the different places, I
> don't know .. it wasn't entirely intuitive to me that I could have a
> ~/.ssh/ssh_config, and I guess it would be nice if this had popped out
> at me from somewhere other than the FILES section, one day when I had
> reason to read the ssh manpage in entirety..
What suprised me is not the precedence order (that's clear to me, though
adding something about it won't hurt), but that the documentation doesn't
describe the out-of-the-box situation (i.e. even though I haven't changed
anything the documentation doesn't describe the actual situation)
So maybe add a section to the man-page saying something like
"the debian ssh package ships with the following non-default settings:
- option A set to X
- option B set to Y
...
"
--
Cheers, cobaco (aka Bart Cornelis)
1. Encrypted mail preferred (GPG KeyID: 0x86624ABB)
2. Plain-text mail recommended since I move html and double
format mails to a low priority folder (they're mainly spam)
pgp61SetpdgTl.pgp
Description: PGP signature
Bug#147201: Bug#345628: man page documents faulty default
On Mon, Jan 02, 2006 at 01:27:08PM +0200, cobaco (aka Bart Cornelis) wrote:
> Package: openssh-server
> Severity: minor
> Version: 1:4.2p1-5
>
> according to sshd_config(5) tels us that UsePAM defaults to 'no', yet a
> fresh install of openssh-server has this set to 'yes'
#345628 is stronly related to #327886 and loosely related to #147201.
It seems clear to me that the default values in ssh{,d}_config are NOT
the values encoded in the ssh{,d} binaries, and that the config files
(and environment variables, and environment variables) exist to
override those defaults (or document the most often-changed
parameters).
Perhaps there should be a section somewhere in ssh manpages section 1
and 5 to the effect of "this is the order of precedence of where
parameter values come from", and documenting the different places, I
don't know .. it wasn't entirely intuitive to me that I could have a
~/.ssh/ssh_config, and I guess it would be nice if this had popped out
at me from somewhere other than the FILES section, one day when I had
reason to read the ssh manpage in entirety..
--
Clear skies,
Justin
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
