disables any escapes and makes the ses‐
               sion fully transparent.

       -F configfile
               Specifies an alternative per‐user configuration file.  If a con‐
               figuration file is given on the command  line,  the  system‐wide
               configuration  file  (/etc/ssh/ssh_config) will be ignored.  The
               default for the per‐user configuration  file  is  ~/.ssh/config.
               If set to “none”, no configuration files will be read.

       -f      Requests  ssh to go to background just before command execution.
               This is  useful  if  ssh  is  going  to  ask  for  passwords  or
               passphrases,  but the user wants it in the background.  This im‐
               plies -n.  The recommended way to start X11 programs at a remote
               site is with something like ssh ‐f host xterm.

               If the  ExitOnForwardFailure  configuration  option  is  set  to
               “yes”,  then  a  client started with -f will wait for all remote
               port forwards to be successfully established before placing  it‐
               self   in   the   background.    Refer  to  the  description  of
               ForkAfterAuthentication in ssh_config(5) for details.

       -G      Causes ssh to print its configuration after evaluating Host  and
               Match blocks and exit.

       -g      Allows  remote  hosts  to  connect to local forwarded ports.  If
               used on a multiplexed connection, then this option must be spec‐
               ified on the master process.

       -I pkcs11
               Specify the PKCS#11 shared library ssh should use to communicate
               with a PKCS#11 token providing keys for user authentication.

       -i identity_file
               Selects a file from which the identity (private key) for  public
               key  authentication  is read.  You can also specify a public key
               file to use the corresponding private  key  that  is  loaded  in
               ssh‐agent(1)  when  the private key file is not present locally.
               The     default     is      ~/.ssh/id_rsa,      ~/.ssh/id_ecdsa,
               ~/.ssh/id_ecdsa_sk,  ~/.ssh/id_ed25519, ~/.ssh/id_ed25519_sk and
               ~/.ssh/id_dsa.  Identity files may also be specified on  a  per‐
               host  basis  in  the configuration file.  It is possible to have
               multiple -i options (and multiple identities specified  in  con‐
               figuration  files).   If  no  certificates  have been explicitly
               specified by the CertificateFile directive, ssh will also try to
               load certificate information from the filename obtained  by  ap‐
               pending ‐cert.pub to identity filenames.

       -J destination
               Connect  to  the target host by first making a ssh connection to
               the jump host described by destination and then  establishing  a
               TCP forwarding to the ultimate destination from there.  Multiple
               jump  hops may be specified separated by comma characters.  This
               is a shortcut to specify a  ProxyJump  configuration  directive.
               Note  that configuration directives supplied on the command‐line
               generally apply to the destination host and  not  any  specified
               jump hosts.  Use ~/.ssh/config to specify configuration for jump
               hosts.

       -K      Enables  GSSAPI‐based authentication and forwarding (delegation)
               of GSSAPI credentials to the server.

       -k      Disables forwarding (delegation) of GSSAPI  credentials  to  the
               server.

       -L [bind_address:]port:host:hostport
       -L [bind_address:]port:remote_socket
       -L local_socket:host:hostport
       -L local_socket:remote_socket
               Specifies  that connections to the given TCP port or Unix socket
               on the local (client)