Man Linux: Main Page and Category List


       lshd - secsh (SSH2) server


       lshd [OPTION...]


       CAUTION!  The  information  in this manpage may be invalid or outdated.
       For authorative information on lsh, please see it's Texinfo manual (see
       the SEE ALSO section).

       lshd is a server for the SSH-2 (secsh) protocol.


       Miscellaneous options:

       -h, --host-key=Key file
              Location of the server's private key.

              Listen on this network interface.

       -p, --port=Port
              Listen on this port.

              Print huge amounts of debug information

       --log-file=File name
              Append messages to this file.

       -q, --quiet
              Suppress all warnings and diagnostic messages

              Detailed trace

       -v, --verbose
              Verbose diagnostic messages

       Algorithm selection:

       -c, --crypto=Algorithm


              List supported algorithms.

       -m, --mac=Algorithm

       -z, --compression[=Algorithm]
              Default is zlib.

       --banner-file=File name
              Banner file to send before handshake.

       Keyexchange options:

              Enable DH support (default).

              Disable DH support.

              Disable experimental SRP support (default).

              Enable experimental SRP support.

       User authentication options:

              Recognize   kerberos   passwords,   using   the  helper  program
              "/usr/local/sbin/lsh-krb-checkpw". This option is  experimental.

              Enable a telnet like mode (accept none-authentication and launch
              thelogin-shell, making it  responsible  for  authenticating  the

              Use   this   program   as   the   login  shell  for  all  users.

              Don't recognize kerberos passwords (default behaviour).

              Disable login-auth-mode (default).

              Disable password user authentication.

              Disable publickey user authentication.

              Don't allow root to login (default).

              Enable password user authentication (default).

              Use  the  named  helper  program  for   password   verification.

              Enable publickey user authentication (default).

              Allow root to login.

       Offered services:

              Disable pty allocation.

              Disable tcpip forwarding.

              Disable x11 forwarding.

              Enable pty allocation (default).

       --subsystems=List of subsystem names and programs
              For  example `sftp=/usr/sbin/sftp-server,foosystem=/usr/bin/foo'

              Enable tcpip forwarding (default).

              Enable x11 forwarding (default).

       Options controlling daemonic mode and related options:

              Run in the background, redirect stdio to /dev/null, and chdir to

              Dump core on fatal errors (disabled by default).

              Run in the foreground, with messages to stderr (default).

              Don't use any pid file. Default in non-daemonic mode.

              Don't  use  syslog  (by  default, syslog is used when running in
              daemonic mode).

       --pid-file=file name
              Create a pid file. When running in daemonic mode, the default is

       -?, --help
              Give this help list

              Give a short usage message

       -V, --version
              Print program version

       Mandatory  or  optional arguments to long options are also mandatory or
       optional for any corresponding short options.


       lshd doesn't use any traditional configuration file, but  must  have  a
       random seed file and the server key.  By default


       is used as random seed file (see ENVIRONMENT for changing this) and


       is the default key file.


       is used to store the process id of the server by default.

       Authorized keys are stored in the directory



       Log  messages  are  normally sent to syslog(3) when running in daemonic

       See the --verbose , --trace and --debug options.


       Report bugs to <>.


       LSH_YARROW_SEED_FILE may be used to specify the random seed file.

       lshd mimics OpenSSH behaviour with respect to  SSH_CLIENT  and  SSH_TTY
       for processes it starts where applicable.


       The  lsh  suite of programs is distributed under the GNU General Public
       License; see the COPYING and AUTHORS files in the  source  distribution
       for details.


       The   lsh   program   suite   is   written   mainly   by  Niels  Moller

       This  man-page  was  originally  written   by   J.H.M.   Dassen   (Ray)
       <>.  It was modified and updated for lsh 2.0 by
       Pontus Freyhult <>


       lsftp(1), lsh(1),  lsh-authorize(1),  lsh-keygen(1),  lsh-make-seed(1),
       lsh-upgrade(1),  lsh-upgrade-key(1),  lsh-writekey(1),  secsh(5), sftp-
       server(8), syslogd(8)

       The full documentation for lsh is maintained as a Texinfo  manual.   If
       the  info  and  lsh  programs  are properly installed at your site, the

              info lsh

       should give you access to the complete manual.