[BACK]Return to sshd_config CVS log [TXT][DIR] Up to [cvs.NetBSD.org] / src / crypto / dist / ssh

Annotation of src/crypto/dist/ssh/sshd_config, Revision 1.1.1.5

1.1.1.4   itojun      1: #      $NetBSD$
1.1.1.5 ! itojun      2: #      $OpenBSD: sshd_config,v 1.41 2001/06/22 21:55:50 markus Exp $
1.1       itojun      3:
                      4: # This is the sshd server system-wide configuration file.  See sshd(8)
                      5: # for more information.
                      6:
                      7: Port 22
                      8: #Protocol 2,1
                      9: #ListenAddress 0.0.0.0
                     10: #ListenAddress ::
1.1.1.5 ! itojun     11:
        !            12: # HostKey for protocol version 1
1.1       itojun     13: HostKey /etc/ssh_host_key
1.1.1.5 ! itojun     14: # HostKeys for protocol version 2
1.1.1.2   itojun     15: HostKey /etc/ssh_host_rsa_key
1.1       itojun     16: HostKey /etc/ssh_host_dsa_key
1.1.1.5 ! itojun     17:
        !            18: # Lifetime and size of ephemeral version 1 server key
1.1       itojun     19: KeyRegenerationInterval 3600
1.1.1.5 ! itojun     20: ServerKeyBits 768
1.1       itojun     21:
                     22: # Logging
                     23: SyslogFacility AUTH
                     24: LogLevel INFO
                     25: #obsoletes QuietMode and FascistLogging
                     26:
1.1.1.5 ! itojun     27: # Authentication:
        !            28:
        !            29: LoginGraceTime 600
        !            30: PermitRootLogin yes
        !            31: StrictModes yes
        !            32:
        !            33: RSAAuthentication yes
        !            34: PubkeyAuthentication yes
        !            35: #AuthorizedKeysFile    %h/.ssh/authorized_keys
        !            36:
        !            37: # rhosts authentication should not be used
1.1       itojun     38: RhostsAuthentication no
1.1.1.5 ! itojun     39: # Don't read the user's ~/.rhosts and ~/.shosts files
        !            40: IgnoreRhosts yes
1.1       itojun     41: # For this to work you will also need host keys in /etc/ssh_known_hosts
                     42: RhostsRSAAuthentication no
1.1.1.4   itojun     43: # similar for protocol version 2
                     44: HostbasedAuthentication no
1.1.1.5 ! itojun     45: # Uncomment if you don't trust ~/.ssh/known_hosts for RhostsRSAAuthentication
        !            46: #IgnoreUserKnownHosts yes
1.1       itojun     47:
                     48: # To disable tunneled clear text passwords, change to no here!
                     49: PasswordAuthentication yes
                     50: PermitEmptyPasswords no
                     51:
                     52: # Uncomment to disable s/key passwords
                     53: #ChallengeResponseAuthentication no
                     54:
                     55: # To change Kerberos options
                     56: #KerberosAuthentication no
                     57: #KerberosOrLocalPasswd yes
                     58: #AFSTokenPassing no
                     59: #KerberosTicketCleanup no
                     60:
                     61: # Kerberos TGT Passing does only work with the AFS kaserver
                     62: #KerberosTgtPassing yes
                     63:
1.1.1.5 ! itojun     64: X11Forwarding no
        !            65: X11DisplayOffset 10
        !            66: PrintMotd yes
        !            67: #PrintLastLog no
        !            68: KeepAlive yes
1.1       itojun     69: #CheckMail yes
                     70: #UseLogin no
                     71:
                     72: #MaxStartups 10:30:60
                     73: #Banner /etc/issue.net
                     74: #ReverseMappingCheck yes
                     75:
                     76: Subsystem      sftp    /usr/libexec/sftp-server

CVSweb <webmaster@jp.NetBSD.org>