aboutsummaryrefslogtreecommitdiffstats
path: root/Changelog
diff options
context:
space:
mode:
authorGuilhem Moulin <guilhem@fripost.org>2020-12-12 11:29:02 +0100
committerGuilhem Moulin <guilhem@fripost.org>2020-12-12 11:45:24 +0100
commit22ef303cdc7b6d5f7de35d3189fbf157093c258e (patch)
tree069f477a73baea68b3152f903a9625eba1b9076c /Changelog
parent4d2ad4a3c2b6bcdb97934264bc3d37a8c63239d4 (diff)
README: use 'restrict' option in authorized_keys(5) snippet.
This is shorter and more future-proof. Quoting the manual: restrict Enable all restrictions, i.e. disable port, agent and X11 forwarding, as well as disabling PTY allocation and execution of ~/.ssh/rc. If any future restriction capabilities are added to authorized_keys files they will be included in this set. Note that this won't work with Jessie's OpenSSH server.
Diffstat (limited to 'Changelog')
-rw-r--r--Changelog2
1 files changed, 2 insertions, 0 deletions
diff --git a/Changelog b/Changelog
index 43fbf8f..196c01d 100644
--- a/Changelog
+++ b/Changelog
@@ -23,6 +23,8 @@ interimap (0.5.5) upstream;
configuration file (the default as of 2.3.11.3), hence running TLS
tests now require Dovecot 2.3 or later.
- documentation: simplify SSL options in the sample configuration files.
+ - README: suggest 'restrict,command="/usr/bin/doveadm exec imap"' as
+ authorized_keys(5) options.
-- Guilhem Moulin <guilhem@fripost.org> Fri, 11 Dec 2020 14:55:53 +0100