[BACK]Return to sshd_config CVS log [TXT][DIR] Up to [cvs.NetBSD.org] / src / crypto / dist / ssh

Please note that diffs are not public domain; they are subject to the copyright notices on the relevant files.

Diff for /src/crypto/dist/ssh/Attic/sshd_config between version 1.1.1.18 and 1.8

version 1.1.1.18, 2009/02/16 17:14:50 version 1.8, 2001/08/31 08:16:24
Line 1 
Line 1 
 #       $OpenBSD: sshd_config,v 1.80 2008/07/02 02:24:18 djm Exp $  #       $NetBSD$
   #       $OpenBSD: sshd_config,v 1.41 2001/06/22 21:55:50 markus Exp $
   
 # This is the sshd server system-wide configuration file.  See  # This is the sshd server system-wide configuration file.  See sshd(8)
 # sshd_config(5) for more information.  # for more information.
   
 # The strategy used for options in the default sshd_config shipped with  Port 22
 # OpenSSH is to specify options with their default value where  #Protocol 2,1
 # possible, but leave them commented.  Uncommented options change a  
 # default value.  
   
 #Port 22  
 #AddressFamily any  
 #ListenAddress 0.0.0.0  #ListenAddress 0.0.0.0
 #ListenAddress ::  #ListenAddress ::
   
 # Disable legacy (protocol version 1) support in the server for new  
 # installations. In future the default will change to require explicit  
 # activation of protocol 1  
 Protocol 2  
   
 # HostKey for protocol version 1  # HostKey for protocol version 1
 #HostKey /etc/ssh/ssh_host_key  HostKey /etc/ssh_host_key
 # HostKeys for protocol version 2  # HostKeys for protocol version 2
 #HostKey /etc/ssh/ssh_host_rsa_key  HostKey /etc/ssh_host_rsa_key
 #HostKey /etc/ssh/ssh_host_dsa_key  HostKey /etc/ssh_host_dsa_key
   
 # Lifetime and size of ephemeral version 1 server key  # Lifetime and size of ephemeral version 1 server key
 #KeyRegenerationInterval 1h  KeyRegenerationInterval 3600
 #ServerKeyBits 1024  ServerKeyBits 768
   
 # Logging  # Logging
 # obsoletes QuietMode and FascistLogging  SyslogFacility AUTH
 #SyslogFacility AUTH  LogLevel INFO
 #LogLevel INFO  #obsoletes QuietMode and FascistLogging
   
 # Authentication:  # Authentication:
   
 #LoginGraceTime 2m  LoginGraceTime 600
 #PermitRootLogin yes  PermitRootLogin no
 #StrictModes yes  StrictModes yes
 #MaxAuthTries 6  
 #MaxSessions 10  RSAAuthentication yes
   PubkeyAuthentication yes
 #RSAAuthentication yes  #AuthorizedKeysFile     %h/.ssh/authorized_keys
 #PubkeyAuthentication yes  
 #AuthorizedKeysFile     .ssh/authorized_keys  
   
 # For this to work you will also need host keys in /etc/ssh/ssh_known_hosts  # rhosts authentication should not be used
 #RhostsRSAAuthentication no  RhostsAuthentication no
 # similar for protocol version 2  
 #HostbasedAuthentication no  
 # Change to yes if you don't trust ~/.ssh/known_hosts for  
 # RhostsRSAAuthentication and HostbasedAuthentication  
 #IgnoreUserKnownHosts no  
 # Don't read the user's ~/.rhosts and ~/.shosts files  # Don't read the user's ~/.rhosts and ~/.shosts files
 #IgnoreRhosts yes  IgnoreRhosts yes
   IgnoreRootRhosts yes
   # For this to work you will also need host keys in /etc/ssh_known_hosts
   RhostsRSAAuthentication no
   # similar for protocol version 2
   HostbasedAuthentication no
   # Uncomment if you don't trust ~/.ssh/known_hosts for RhostsRSAAuthentication
   #IgnoreUserKnownHosts yes
   
 # To disable tunneled clear text passwords, change to no here!  # To disable tunneled clear text passwords, change to no here!
 #PasswordAuthentication yes  PasswordAuthentication yes
 #PermitEmptyPasswords no  PermitEmptyPasswords no
   
 # Change to no to disable s/key passwords  # Uncomment to disable s/key passwords
 #ChallengeResponseAuthentication yes  #ChallengeResponseAuthentication no
   
 # Kerberos options  # To change Kerberos options
 #KerberosAuthentication no  #KerberosAuthentication no
 #KerberosOrLocalPasswd yes  #KerberosOrLocalPasswd yes
 #KerberosTicketCleanup yes  #AFSTokenPassing no
 #KerberosGetAFSToken no  #KerberosTicketCleanup no
   
   # Kerberos TGT Passing does only work with the AFS kaserver
   #KerberosTgtPassing yes
   
 # GSSAPI options  X11Forwarding no
 #GSSAPIAuthentication no  X11DisplayOffset 10
 #GSSAPICleanupCredentials yes  PrintMotd yes
   #PrintLastLog no
 #AllowAgentForwarding yes  KeepAlive yes
 #AllowTcpForwarding yes  #CheckMail yes
 #GatewayPorts no  
 #X11Forwarding no  
 #X11DisplayOffset 10  
 #X11UseLocalhost yes  
 #PrintMotd yes  
 #PrintLastLog yes  
 #TCPKeepAlive yes  
 #UseLogin no  #UseLogin no
 #UsePrivilegeSeparation yes  
 #PermitUserEnvironment no  
 #Compression delayed  
 #ClientAliveInterval 0  
 #ClientAliveCountMax 3  
 #UseDNS yes  
 #PidFile /var/run/sshd.pid  
 #MaxStartups 10  
 #PermitTunnel no  
 #ChrootDirectory none  
   
 # no default banner path  #MaxStartups 10:30:60
 #Banner none  #Banner /etc/issue.net
   #ReverseMappingCheck yes
   
 # override default of no subsystems  
 Subsystem       sftp    /usr/libexec/sftp-server  Subsystem       sftp    /usr/libexec/sftp-server
   
 # Example of overriding settings on a per-user basis  
 #Match User anoncvs  
 #       X11Forwarding no  
 #       AllowTcpForwarding no  
 #       ForceCommand cvs server  

Legend:
Removed from v.1.1.1.18  
changed lines
  Added in v.1.8

CVSweb <webmaster@jp.NetBSD.org>