From nobody@FreeBSD.org  Tue Jun 20 20:02:44 2006
Return-Path: <nobody@FreeBSD.org>
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id C2E5416A47A
	for <freebsd-gnats-submit@FreeBSD.org>; Tue, 20 Jun 2006 20:02:44 +0000 (UTC)
	(envelope-from nobody@FreeBSD.org)
Received: from www.freebsd.org (www.freebsd.org [216.136.204.117])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 8549343D49
	for <freebsd-gnats-submit@FreeBSD.org>; Tue, 20 Jun 2006 20:02:44 +0000 (GMT)
	(envelope-from nobody@FreeBSD.org)
Received: from www.freebsd.org (localhost [127.0.0.1])
	by www.freebsd.org (8.13.1/8.13.1) with ESMTP id k5KK2iWH082475
	for <freebsd-gnats-submit@FreeBSD.org>; Tue, 20 Jun 2006 20:02:44 GMT
	(envelope-from nobody@www.freebsd.org)
Received: (from nobody@localhost)
	by www.freebsd.org (8.13.1/8.13.1/Submit) id k5KK2isL082474;
	Tue, 20 Jun 2006 20:02:44 GMT
	(envelope-from nobody)
Message-Id: <200606202002.k5KK2isL082474@www.freebsd.org>
Date: Tue, 20 Jun 2006 20:02:44 GMT
From: Douglas Denault <doug@safeport.com>
To: freebsd-gnats-submit@FreeBSD.org
Subject: Documentation change for sshd_config
X-Send-Pr-Version: www-2.3

>Number:         99215
>Category:       docs
>Synopsis:       Documentation change for sshd_config
>Confidential:   no
>Severity:       non-critical
>Priority:       low
>Responsible:    trhodes
>State:          closed
>Quarter:        
>Keywords:       
>Date-Required:  
>Class:          doc-bug
>Submitter-Id:   current-users
>Arrival-Date:   Tue Jun 20 20:10:19 GMT 2006
>Closed-Date:    Mon Nov 06 14:54:33 GMT 2006
>Last-Modified:  Mon Nov 06 14:54:33 GMT 2006
>Originator:     Douglas Denault
>Release:        6.1
>Organization:
Safeport Network Services
>Environment:
FreeBSD artemis.boltsys.com 6.1-STABLE FreeBSD 6.1-STABLE #6: Tue Jun  6 03:36:37 EDT 2006     doug@artemis.boltsys.com:/usr/obj/usr/src/sys/ARTEMIS  i386

>Description:
OpenSSH implements a specific order in processing the directives. The following should be added to shd_config:

The allow/deny directives are processed in the following order: DenyUsers, AllowUsers, DenyGroups, and finally AllowGroups.
>How-To-Repeat:
man sshd_config
>Fix:
The following should be added to shd_config:

The allow/deny directives are processed in the following order: DenyUsers, AllowUsers, DenyGroups, and finally AllowGroups.
>Release-Note:
>Audit-Trail:
State-Changed-From-To: open->closed 
State-Changed-By: trhodes 
State-Changed-When: Mon Nov 6 14:52:48 UTC 2006 
State-Changed-Why:  
OpenSSH is contributed software from the OpenBSD project, 
and, after some quick discussion with our maintainer, we 
would prefer these changes merged upstream.  They will then 
be imported next time OpenSSH in FreeBSD is upgraded.  Thanks! 


Responsible-Changed-From-To: freebsd-doc->trhodes 
Responsible-Changed-By: trhodes 
Responsible-Changed-When: Mon Nov 6 14:52:48 UTC 2006 
Responsible-Changed-Why:  
Over to me. 

http://www.freebsd.org/cgi/query-pr.cgi?pr=99215 
>Unformatted:
