src/crypto/dist/ssh/sshd_config - annotate

Return to sshd_config CVS log
Up to [cvs.NetBSD.org] / src / crypto / dist / ssh
Annotation of src/crypto/dist/ssh/sshd_config, Revision 1.5

1.3       itojun      1: #      $OpenBSD: sshd_config,v 1.34 2001/02/24 10:37:26 deraadt Exp $
1.5     ! itojun      2: #      $OpenBSD: sshd_config,v 1.38 2001/04/15 21:41:29 deraadt Exp $
1.1       itojun      3:
                      4: # This is the sshd server system-wide configuration file.  See sshd(8)
                      5: # for more information.
                      6:
                      7: Port 22
                      8: #Protocol 2,1
                      9: #ListenAddress 0.0.0.0
                     10: #ListenAddress ::
                     11: HostKey /etc/ssh_host_key
1.3       itojun     12: HostKey /etc/ssh_host_rsa_key
1.1       itojun     13: HostKey /etc/ssh_host_dsa_key
                     14: ServerKeyBits 768
                     15: LoginGraceTime 600
                     16: KeyRegenerationInterval 3600
                     17: PermitRootLogin yes
                     18: #
                     19: # Don't read ~/.rhosts and ~/.shosts files
                     20: IgnoreRhosts yes
1.2       itojun     21: IgnoreRootRhosts yes
1.1       itojun     22: # Uncomment if you don't trust ~/.ssh/known_hosts for RhostsRSAAuthentication
                     23: #IgnoreUserKnownHosts yes
                     24: StrictModes yes
                     25: X11Forwarding no
                     26: X11DisplayOffset 10
                     27: PrintMotd yes
1.4       itojun     28: #PrintLastLog no
1.1       itojun     29: KeepAlive yes
                     30:
                     31: # Logging
                     32: SyslogFacility AUTH
                     33: LogLevel INFO
                     34: #obsoletes QuietMode and FascistLogging
                     35:
                     36: RhostsAuthentication no
                     37: #
                     38: # For this to work you will also need host keys in /etc/ssh_known_hosts
                     39: RhostsRSAAuthentication no
1.5     ! itojun     40: # similar for protocol version 2
        !            41: HostbasedAuthentication no
1.1       itojun     42: #
                     43: RSAAuthentication yes
                     44:
                     45: # To disable tunneled clear text passwords, change to no here!
                     46: PasswordAuthentication yes
                     47: PermitEmptyPasswords no
                     48:
                     49: # Uncomment to disable s/key passwords
                     50: #ChallengeResponseAuthentication no
                     51:
                     52: # To change Kerberos options
                     53: #KerberosAuthentication no
                     54: #KerberosOrLocalPasswd yes
                     55: #AFSTokenPassing no
                     56: #KerberosTicketCleanup no
                     57:
                     58: # Kerberos TGT Passing does only work with the AFS kaserver
                     59: #KerberosTgtPassing yes
                     60:
                     61: #CheckMail yes
                     62: #UseLogin no
                     63:
                     64: #MaxStartups 10:30:60
                     65: #Banner /etc/issue.net
                     66: #ReverseMappingCheck yes
                     67:
                     68: Subsystem      sftp    /usr/libexec/sftp-server
CVSweb <webmaster@jp.NetBSD.org>