src/crypto/dist/ssh/sshd_config - diff

Return to sshd_config CVS log

Up to [cvs.NetBSD.org] / src / crypto / dist / ssh

Please note that diffs are not public domain; they are subject to the copyright notices on the relevant files.

Diff for /src/crypto/dist/ssh/Attic/sshd_config between version 1.8 and 1.18

-version 1.8, 2001/08/31 08:16:24
+version 1.18, 2003/07/24 15:31:56
 Line 1
 Line 1
 Line 1
  #       $NetBSD$
- #       $OpenBSD: sshd_config,v 1.41 2001/06/22 21:55:50 markus Exp $
+ #       $OpenBSD: sshd_config,v 1.59 2002/09/25 11:17:16 markus Exp $
- # This is the sshd server system-wide configuration file.  See sshd(8)
+ # This is the sshd server system-wide configuration file.  See
- # for more information.
+ # sshd_config(5) for more information.
- Port 22
+ # The strategy used for options in the default sshd_config shipped with
+ # OpenSSH is to specify options with their default value where
+ # possible, but leave them commented.  Uncommented options change a
+ # default value.
+ #Port 22
  #Protocol 2,1
  #ListenAddress 0.0.0.0
  #ListenAddress ::
  # HostKey for protocol version 1
- HostKey /etc/ssh_host_key
+ #HostKey /etc/ssh/ssh_host_key
  # HostKeys for protocol version 2
- HostKey /etc/ssh_host_rsa_key
+ #HostKey /etc/ssh/ssh_host_rsa_key
- HostKey /etc/ssh_host_dsa_key
+ #HostKey /etc/ssh/ssh_host_dsa_key
  # Lifetime and size of ephemeral version 1 server key
- KeyRegenerationInterval 3600
+ #KeyRegenerationInterval 3600
- ServerKeyBits 768
+ #ServerKeyBits 768
  # Logging
- SyslogFacility AUTH
- LogLevel INFO
  #obsoletes QuietMode and FascistLogging
+ #SyslogFacility AUTH
+ #LogLevel INFO
  # Authentication:
- LoginGraceTime 600
+ #LoginGraceTime 120
- PermitRootLogin no
+ #PermitRootLogin no
- StrictModes yes
+ #StrictModes yes
- RSAAuthentication yes
+ #RSAAuthentication yes
- PubkeyAuthentication yes
+ #PubkeyAuthentication yes
- #AuthorizedKeysFile     %h/.ssh/authorized_keys
+ #AuthorizedKeysFile     .ssh/authorized_keys
  # rhosts authentication should not be used
- RhostsAuthentication no
+ #RhostsAuthentication no
  # Don't read the user's ~/.rhosts and ~/.shosts files
- IgnoreRhosts yes
+ #IgnoreRhosts yes
- IgnoreRootRhosts yes
+ #IgnoreRootRhosts yes
- # For this to work you will also need host keys in /etc/ssh_known_hosts
+ # For this to work you will also need host keys in /etc/ssh/ssh_known_hosts
- RhostsRSAAuthentication no
+ #RhostsRSAAuthentication no
  # similar for protocol version 2
- HostbasedAuthentication no
+ #HostbasedAuthentication no
- # Uncomment if you don't trust ~/.ssh/known_hosts for RhostsRSAAuthentication
+ # Change to yes if you don't trust ~/.ssh/known_hosts for
- #IgnoreUserKnownHosts yes
+ # RhostsRSAAuthentication and HostbasedAuthentication
+ #IgnoreUserKnownHosts no
  # To disable tunneled clear text passwords, change to no here!
- PasswordAuthentication yes
+ #PasswordAuthentication yes
- PermitEmptyPasswords no
+ #PermitEmptyPasswords no
- # Uncomment to disable s/key passwords
+ # Change to no to disable s/key passwords
- #ChallengeResponseAuthentication no
+ #ChallengeResponseAuthentication yes
- # To change Kerberos options
+ # Kerberos options
  #KerberosAuthentication no
  #KerberosOrLocalPasswd yes
+ #KerberosTicketCleanup yes
  #AFSTokenPassing no
- #KerberosTicketCleanup no
- # Kerberos TGT Passing does only work with the AFS kaserver
+ # Kerberos TGT Passing only works with the AFS kaserver
- #KerberosTgtPassing yes
+ #KerberosTgtPassing no
- X11Forwarding no
+ #X11Forwarding no
- X11DisplayOffset 10
+ #X11DisplayOffset 10
- PrintMotd yes
+ #X11UseLocalhost yes
- #PrintLastLog no
+ #PrintMotd yes
- KeepAlive yes
+ #PrintLastLog yes
- #CheckMail yes
+ #KeepAlive yes
  #UseLogin no
+ #UsePrivilegeSeparation yes
+ #PermitUserEnvironment no
+ #Compression yes
+ #MaxStartups 10
+ # no default banner path
+ #Banner /some/path
+ #VerifyReverseMapping no
- #MaxStartups 10:30:60
+ # override default of no subsystems
- #Banner /etc/issue.net
- #ReverseMappingCheck yes
  Subsystem       sftp    /usr/libexec/sftp-server

CVSweb <webmaster@jp.NetBSD.org>