- not tested yet - anon mmap for 3.2

[packages/openssh.git] / opensshd.conf

diff --git a/opensshd.conf b/opensshd.conf
index 322983fccb0d19a33220c6c31a773eb4c07400f3..0f11da3db61a814ae0be91bef4cf7e0890ccff96 100644 (file)
--- a/opensshd.conf
+++ b/opensshd.conf
@@ -5,6 +5,7 @@ Protocol 1,2
 #ListenAddress 0.0.0.0
 #ListenAddress ::
 #HostKey /etc/ssh/ssh_host_key
+#HostKey /etc/ssh/ssh_host_dsa_key
 ServerKeyBits 768
 LoginGraceTime 600
 KeyRegenerationInterval 3600
@@ -17,6 +18,7 @@ IgnoreRhosts yes
 StrictModes yes
 X11Forwarding no
 X11DisplayOffset 10
+X11UseLocalhost yes
 PrintMotd yes
 KeepAlive yes
 
@@ -32,7 +34,11 @@ RhostsRSAAuthentication no
 #
 RSAAuthentication yes
 
+# Make password ageing work
+PAMAuthenticationViaKbdInt yes
+
 # To disable tunneled clear text passwords, change to no here!
+# You also have to change previous line to no (PAMAuthenticationViaKbdInt no)
 PasswordAuthentication yes
 PermitEmptyPasswords no
 # Uncomment to disable s/key passwords 
@@ -47,5 +53,4 @@ PermitEmptyPasswords no
 # Kerberos TGT Passing does only work with the AFS kaserver
 #KerberosTgtPassing yes
 
-CheckMail no
 UseLogin no