1 --- openssh-4.6p1/sshd_config~ 2007-10-13 01:37:17.000000000 +0200
2 +++ openssh-4.6p1/sshd_config 2007-10-13 01:47:12.000000000 +0200
7 -#PermitRootLogin prohibit-password
13 #IgnoreUserKnownHosts no
14 # Don't read the user's ~/.rhosts and ~/.shosts files
18 # To disable tunneled clear text passwords, change to no here!
19 #PasswordAuthentication yes
20 #PermitEmptyPasswords no
21 +PasswordAuthentication yes
22 +PermitEmptyPasswords no
25 +#PubkeyAcceptedKeyTypes +ssh-dss
27 # Change to no to disable s/key passwords
28 #ChallengeResponseAuthentication yes
31 #GSSAPIAuthentication no
32 #GSSAPICleanupCredentials yes
33 +GSSAPIAuthentication yes
34 +GSSAPICleanupCredentials yes
36 # Set this to 'yes' to enable PAM authentication, account processing,
37 # and session processing. If this is enabled, PAM authentication will
39 # If you just want the PAM account and session checks to run without
40 # PAM authentication, then enable this but set PasswordAuthentication
41 # and ChallengeResponseAuthentication to 'no'.
45 #AllowAgentForwarding yes
46 -#AllowTcpForwarding yes
48 +# http://securitytracker.com/alerts/2004/Sep/1011143.html
49 +AllowTcpForwarding no
54 # no default banner path
57 +# Accept locale-related environment variables, also accept some GIT vars
58 +AcceptEnv LANG LC_* LANGUAGE XMODIFIERS TZ GIT_AUTHOR_NAME GIT_AUTHOR_EMAIL GIT_COMMITTER_NAME GIT_COMMITTER_EMAIL
60 # override default of no subsystems
61 Subsystem sftp /usr/libexec/sftp-server
64 # override default of no subsystems
65 Subsystem sftp /usr/libexec/sftp-server
67 +# Uncomment this if you want to use .local domain
71 # Example of overriding settings on a per-user basis
74 --- openssh-4.6p1/ssh_config~ 2006-06-13 05:01:10.000000000 +0200
75 +++ openssh-4.6p1/ssh_config 2007-10-13 02:00:16.000000000 +0200
80 +# ForwardX11Trusted yes
81 # RhostsRSAAuthentication no
82 # RSAAuthentication yes
83 # PasswordAuthentication yes
84 # HostbasedAuthentication no
85 # GSSAPIAuthentication no
86 # GSSAPIDelegateCredentials no
87 +# GSSAPIKeyExchange no
94 # ProxyCommand ssh -q -W %h:%p gateway.example.com
98 + GSSAPIAuthentication yes
99 + GSSAPIDelegateCredentials no
102 +# If this option is set to yes then remote X11 clients will have full access
103 +# to the original X11 display. As virtually no X11 client supports the untrusted
104 +# mode correctly we set this to yes.
105 + ForwardX11Trusted yes
106 + StrictHostKeyChecking no
107 + ServerAliveInterval 60
108 + ServerAliveCountMax 10
110 +# Send locale-related environment variables, also pass some GIT vars
111 + SendEnv LANG LC_* LANGUAGE XMODIFIERS TZ GIT_AUTHOR_NAME GIT_AUTHOR_EMAIL GIT_COMMITTER_NAME GIT_COMMITTER_EMAIL