Provided by: lsh-server_2.1-13_amd64 bug


       lshd - secsh (SSH2) server


       lshd [OPTION...]


       CAUTION!  The  information  in  this  manpage  may be invalid or outdated. For authorative
       information on lsh, please see it's Texinfo manual (see the SEE ALSO section).

       lshd is a server for the SSH-2 (secsh) protocol.


       Miscellaneous options:

       -h, --host-key=Key file
              Location of the server's private key.

              Listen on this network interface.

       -p, --port=Port
              Listen on this port.

              Print huge amounts of debug information

       --log-file=File name
              Append messages to this file.

       -q, --quiet
              Suppress all warnings and diagnostic messages

              Detailed trace

       -v, --verbose
              Verbose diagnostic messages

       Algorithm selection:

       -c, --crypto=Algorithm


              List supported algorithms.

       -m, --mac=Algorithm

       -z, --compression[=Algorithm]
              Default is zlib.

       --banner-file=File name
              Banner file to send before handshake.

       Keyexchange options:

              Enable DH support (default).

              Disable DH support.

              Disable experimental SRP support (default).

              Enable experimental SRP support.

       User authentication options:

              Recognize kerberos passwords, using the  helper  program  "/usr/local/sbin/lsh-krb-
              checkpw". This option is experimental.

              Enable  a  telnet  like mode (accept none-authentication and launch thelogin-shell,
              making it responsible for authenticating the user).

              Use this program as the login shell for all users.  (Experimental)

              Don't recognize kerberos passwords (default behaviour).

              Disable login-auth-mode (default).

              Disable password user authentication.

              Disable publickey user authentication.

              Don't allow root to login (default).

              Enable password user authentication (default).

              Use the named helper program for password verification. (Experimental).

              Enable publickey user authentication (default).

              Allow root to login.

       Offered services:

              Disable pty allocation.

              Disable tcpip forwarding.

              Disable x11 forwarding.

              Enable pty allocation (default).

       --subsystems=List of subsystem names and programs
              For example `sftp=/usr/sbin/sftp-server,foosystem=/usr/bin/foo' (experimental).

              Enable tcpip forwarding (default).

              Enable x11 forwarding (default).

       Options controlling daemonic mode and related options:

              Run in the background, redirect stdio to /dev/null, and chdir to /.

              Dump core on fatal errors (disabled by default).

              Run in the foreground, with messages to stderr (default).

              Don't use any pid file. Default in non-daemonic mode.

              Don't use syslog (by default, syslog is used when running in daemonic mode).

       --pid-file=file name
              Create a pid file. When running in daemonic mode, the default is /var/run/

       -?, --help
              Give this help list

              Give a short usage message

       -V, --version
              Print program version

       Mandatory or optional arguments to long options are also mandatory  or  optional  for  any
       corresponding short options.


       lshd  doesn't use any traditional configuration file, but must have a random seed file and
       the server key.  By default


       is used as random seed file (see ENVIRONMENT for changing this) and


       is the default key file.


       is used to store the process id of the server by default.

       Authorized keys are stored in the directory



       Log messages are normally sent to syslog(3) when running in daemonic mode.

       See the --verbose , --trace and --debug options.


       Report bugs to <>.


       LSH_YARROW_SEED_FILE may be used to specify the random seed file.

       lshd mimics OpenSSH behaviour with respect to SSH_CLIENT  and  SSH_TTY  for  processes  it
       starts where applicable.


       The  lsh  suite  of  programs is distributed under the GNU General Public License; see the
       COPYING and AUTHORS files in the source distribution for details.


       The lsh program suite is written mainly by Niels Möller <>.

       This man-page was originally written by J.H.M.  Dassen  (Ray)  <>.
       It was modified and updated for lsh 2.0 by Pontus Freyhult <>


       lsftp(1),  lsh(1), lsh-authorize(1), lsh-keygen(1), lsh-make-seed(1), lsh-upgrade(1), lsh-
       upgrade-key(1), lsh-writekey(1), secsh(5), sftp-server(8), syslogd(8)

       The full documentation for lsh is maintained as a Texinfo manual.  If  the  info  and  lsh
       programs are properly installed at your site, the command

              info lsh

       should give you access to the complete manual.