Please note that diffs are not public domain; they are subject to the copyright notices on the relevant files. =================================================================== RCS file: /ftp/cvs/cvsroot/src/crypto/dist/ssh/Attic/sshd_config,v retrieving revision 1.20 retrieving revision 1.29 diff -u -p -r1.20 -r1.29 --- src/crypto/dist/ssh/Attic/sshd_config 2005/02/13 05:57:27 1.20 +++ src/crypto/dist/ssh/Attic/sshd_config 2008/01/28 13:57:02 1.29 @@ -1,5 +1,5 @@ -# $NetBSD: sshd_config,v 1.20 2005/02/13 05:57:27 christos Exp $ -# $OpenBSD: sshd_config,v 1.69 2004/05/23 23:59:53 dtucker Exp $ +# $NetBSD: sshd_config,v 1.29 2008/01/28 13:57:02 christos Exp $ +# $OpenBSD: sshd_config,v 1.75 2007/03/19 01:01:29 djm Exp $ # This is the sshd server system-wide configuration file. See # sshd_config(5) for more information. @@ -10,10 +10,15 @@ # default value. #Port 22 -#Protocol 2,1 +#AddressFamily any #ListenAddress 0.0.0.0 #ListenAddress :: +# Disable legacy (protocol version 1) support in the server for new +# installations. In future the default will change to require explicit +# activation of protocol 1 +Protocol 2 + # HostKey for protocol version 1 #HostKey /etc/ssh/ssh_host_key # HostKeys for protocol version 2 @@ -25,7 +30,7 @@ #ServerKeyBits 768 # Logging -#obsoletes QuietMode and FascistLogging +# obsoletes QuietMode and FascistLogging #SyslogFacility AUTH #LogLevel INFO @@ -71,6 +76,8 @@ LoginGraceTime 600 #AllowTcpForwarding yes #GatewayPorts no #X11Forwarding no +# If you use xorg from pkgsrc then uncomment the following line. +#XAuthLocation /usr/pkg/bin/xauth #X11DisplayOffset 10 #X11UseLocalhost yes #PrintMotd yes @@ -78,16 +85,24 @@ LoginGraceTime 600 #TCPKeepAlive yes #UseLogin no #UsePrivilegeSeparation yes +UsePam yes #PermitUserEnvironment no -#Compression yes +#Compression delayed #ClientAliveInterval 0 #ClientAliveCountMax 3 #UseDNS yes #PidFile /var/run/sshd.pid #MaxStartups 10 +#PermitTunnel no # no default banner path #Banner /some/path # override default of no subsystems Subsystem sftp /usr/libexec/sftp-server + +# Example of overriding settings on a per-user basis +#Match User anoncvs +# X11Forwarding no +# AllowTcpForwarding no +# ForceCommand cvs server