← Back to context

Comment by ThePowerOfFuet

3 months ago

This comment seems to have a lot to say but it was word salad to me, quite confusing and hard to read :(

It has been translated from OpenSSH meta-spaghetti code logic. Break it down by parts of sentence.

  • I've tried reading it over and over, and tried breaking it down by pars of the the sentence. It still doesn't make sense to me.

    • For SSH clients, the naming of configuration files are read in lexical ordering by OpenSSH.

      Starts reading with /etc/ssh/sshd.d directory which can provide admins to give/takeaway what user can specify in their user config files then OpenSSH reads in the user-defined configuration in $HOME/.ssh/sshd.d.

      Inserting configuration items into system config directory takes away user's ability to use nor change.

      Removing from system directory reverts to a user-changeable default settings. Adding to user-directory (without any in system directory) gives user that choice.

      For finer granularity of option usage, remove said option from both system directory and user config files then insert into last of lexical ordering config files (typically 99-something.conf or 999-something.conf) and place a couple under Match/MatchGroup using deny/accept.