For the default of CanonicalizeFallbackLocal

Damien Miller djm at mindrot.org
Sun Jan 19 15:47:21 EST 2014


On Sun, 19 Jan 2014, togakushi wrote:

> Hi,
> 
> The default value for the option CanonicalizeFallbackLocal.
> 
> In the manual, The default value "no".
> 
>      CanonicalizeFallbackLocal
>              Specifies whether to fail with an error when hostname canonical-
>              ization fails.  The default, ?no?, will attempt to look up the
>              unqualified hostname using the system resolver?s search rules.  A
>              value of ?yes? will cause ssh(1) to fail instantly if
>              CanonicalizeHostname is enabled and the target hostname cannot be
>              found in any of the domains specified by CanonicalDomains.
> 
> but, I think in the "yes".
> In the source code...

Thanks - the manpage is wrong:

Index: ssh_config.5
===================================================================
RCS file: /cvs/src/usr.bin/ssh/ssh_config.5,v
retrieving revision 1.183
diff -u -p -r1.183 ssh_config.5
--- ssh_config.5	7 Dec 2013 11:58:46 -0000	1.183
+++ ssh_config.5	19 Jan 2014 04:46:57 -0000
@@ -229,11 +229,11 @@ search for the specified destination hos
 .It Cm CanonicalizeFallbackLocal
 Specifies whether to fail with an error when hostname canonicalization fails.
 The default,
-.Dq no ,
+.Dq yes ,
 will attempt to look up the unqualified hostname using the system resolver's
 search rules.
 A value of
-.Dq yes
+.Dq no
 will cause
 .Xr ssh 1
 to fail instantly if


More information about the openssh-unix-dev mailing list