[BACK]Return to sshd_config.in CVS log [TXT][DIR] Up to [cvs.NetBSD.org] / src / tests / fs / psshfs

File: [cvs.NetBSD.org] / src / tests / fs / psshfs / sshd_config.in (download)

Revision 1.2, Fri Feb 11 13:19:46 2011 UTC (11 years, 3 months ago) by pooka
Branch: MAIN
CVS Tags: yamt-pagecache-tag8, yamt-pagecache-base9, yamt-pagecache-base8, yamt-pagecache-base7, yamt-pagecache-base6, yamt-pagecache-base5, yamt-pagecache-base4, yamt-pagecache-base3, yamt-pagecache-base2, yamt-pagecache-base, yamt-pagecache, tls-maxphys-base, tls-maxphys, tls-earlyentropy-base, tls-earlyentropy, riastradh-xf86-video-intel-2-7-1-pre-2-21-15, riastradh-drm2-base3, riastradh-drm2-base2, riastradh-drm2-base1, riastradh-drm2-base, riastradh-drm2, prg-localcount2-base3, prg-localcount2-base2, prg-localcount2-base1, prg-localcount2-base, prg-localcount2, pgoyette-localcount-base, pgoyette-localcount-20170426, pgoyette-localcount-20170320, pgoyette-localcount-20170107, pgoyette-localcount-20161104, pgoyette-localcount-20160806, pgoyette-localcount-20160726, pgoyette-localcount, netbsd-7-nhusb-base-20170116, netbsd-7-nhusb-base, netbsd-7-nhusb, netbsd-7-base, netbsd-7-2-RELEASE, netbsd-7-1-RELEASE, netbsd-7-1-RC2, netbsd-7-1-RC1, netbsd-7-1-2-RELEASE, netbsd-7-1-1-RELEASE, netbsd-7-1, netbsd-7-0-RELEASE, netbsd-7-0-RC3, netbsd-7-0-RC2, netbsd-7-0-RC1, netbsd-7-0-2-RELEASE, netbsd-7-0-1-RELEASE, netbsd-7-0, netbsd-7, netbsd-6-base, netbsd-6-1-RELEASE, netbsd-6-1-RC4, netbsd-6-1-RC3, netbsd-6-1-RC2, netbsd-6-1-RC1, netbsd-6-1-5-RELEASE, netbsd-6-1-4-RELEASE, netbsd-6-1-3-RELEASE, netbsd-6-1-2-RELEASE, netbsd-6-1-1-RELEASE, netbsd-6-1, netbsd-6-0-RELEASE, netbsd-6-0-RC2, netbsd-6-0-RC1, netbsd-6-0-6-RELEASE, netbsd-6-0-5-RELEASE, netbsd-6-0-4-RELEASE, netbsd-6-0-3-RELEASE, netbsd-6-0-2-RELEASE, netbsd-6-0-1-RELEASE, netbsd-6-0, netbsd-6, matt-nb6-plus-nbase, matt-nb6-plus-base, matt-nb6-plus, localcount-20160914, cherry-xenmp-base, cherry-xenmp, bouyer-socketcan-base1, bouyer-socketcan-base, bouyer-socketcan, bouyer-quota2-nbase, bouyer-quota2-base, agc-symver-base, agc-symver
Changes since 1.1: +2 -2 lines

Use sshd's pidfile instead of $! and wait for the pidfile to appear.
This plugs a race condition where sshd did not have a chance to
open a sucket before we attempted to connect to it.

# $NetBSD: sshd_config.in,v 1.2 2011/02/11 13:19:46 pooka Exp $

# Basic settings.
Port 10000
Protocol 2

# Provide information to the user in case something goes wrong.
LogLevel DEBUG1

# The host key.  It lives in the work directory because we need to set
# very strict permissions on it and cannot modify the copy on the source
# directory.
HostKey @WORKDIR@/ssh_host_key

# The authorized keys file we set up during the test to allow the client
# to safely log in.  We need to disable strict modes because ATF_WORKDIR
# usually lives in /tmp, which has 1777 permissions and are not liked by
# sshd.
AuthorizedKeysFile @WORKDIR@/authorized_keys
StrictModes no

# Some settings to allow user runs of sshd.
PidFile @WORKDIR@/sshd.pid
Subsystem sftp @WORKDIR@/sftp-server
UsePam no
UsePrivilegeSeparation no

# The root user should also be able to run the tests.
PermitRootLogin yes

# Be restrictive about access to the temporary server.  Only allow key-based
# authentication.
ChallengeResponseAuthentication no
GSSAPIAuthentication no
HostbasedAuthentication no
KerberosAuthentication no
MaxAuthTries 1
MaxStartups 1
PasswordAuthentication no
PubkeyAuthentication yes