]>
Commit | Line | Data |
---|---|---|
1 | # This is ssh server systemwide configuration file. | |
2 | ||
3 | Port 22 | |
4 | Protocol 1,2 | |
5 | #ListenAddress 0.0.0.0 | |
6 | #ListenAddress :: | |
7 | #HostKey /etc/ssh/ssh_host_key | |
8 | #HostKey /etc/ssh/ssh_host_dsa_key | |
9 | ServerKeyBits 768 | |
10 | LoginGraceTime 600 | |
11 | KeyRegenerationInterval 3600 | |
12 | PermitRootLogin no | |
13 | # | |
14 | # Don't read ~/.rhosts and ~/.shosts files | |
15 | IgnoreRhosts yes | |
16 | # Uncomment if you don't trust ~/.ssh/known_hosts for RhostsRSAAuthentication | |
17 | #IgnoreUserKnownHosts yes | |
18 | StrictModes yes | |
19 | X11Forwarding no | |
20 | X11DisplayOffset 10 | |
21 | PrintMotd yes | |
22 | KeepAlive yes | |
23 | ||
24 | # Logging | |
25 | SyslogFacility AUTH | |
26 | LogLevel INFO | |
27 | #obsoletes QuietMode and FascistLogging | |
28 | ||
29 | RhostsAuthentication no | |
30 | # | |
31 | # For this to work you will also need host keys in /etc/ssh_known_hosts | |
32 | RhostsRSAAuthentication no | |
33 | # | |
34 | RSAAuthentication yes | |
35 | ||
36 | # To disable tunneled clear text passwords, change to no here! | |
37 | PasswordAuthentication yes | |
38 | PermitEmptyPasswords no | |
39 | # Uncomment to disable s/key passwords | |
40 | #SkeyAuthentication no | |
41 | ||
42 | # To change Kerberos options | |
43 | #KerberosAuthentication no | |
44 | #KerberosOrLocalPasswd yes | |
45 | #AFSTokenPassing no | |
46 | #KerberosTicketCleanup no | |
47 | ||
48 | # Kerberos TGT Passing does only work with the AFS kaserver | |
49 | #KerberosTgtPassing yes | |
50 | ||
51 | UseLogin no |