]>
Commit | Line | Data |
---|---|---|
cf3b46d6 AF |
1 | # This is ssh server systemwide configuration file. |
2 | ||
3 | Port 22 | |
3f1168a9 AM |
4 | #Protocol 2,1 |
5 | #ListenAddress 0.0.0.0 | |
6 | #ListenAddress :: | |
7 | HostKey /etc/ssh_host_key | |
cf3b46d6 AF |
8 | ServerKeyBits 768 |
9 | LoginGraceTime 600 | |
cf3b46d6 AF |
10 | KeyRegenerationInterval 3600 |
11 | PermitRootLogin no | |
3f1168a9 AM |
12 | # |
13 | # Don't read ~/.rhosts and ~/.shosts files | |
cf3b46d6 | 14 | IgnoreRhosts yes |
3f1168a9 AM |
15 | # Uncomment if you don't trust ~/.ssh/known_hosts for RhostsRSAAuthentication |
16 | #IgnoreUserKnownHosts yes | |
cf3b46d6 | 17 | StrictModes yes |
3f1168a9 | 18 | X11Forwarding no |
cf3b46d6 | 19 | X11DisplayOffset 10 |
cf3b46d6 AF |
20 | PrintMotd yes |
21 | KeepAlive yes | |
3f1168a9 AM |
22 | |
23 | # Logging | |
24 | SyslogFacility AUTH | |
25 | LogLevel INFO | |
26 | #obsoletes QuietMode and FascistLogging | |
27 | ||
cf3b46d6 | 28 | RhostsAuthentication no |
3f1168a9 AM |
29 | # |
30 | # For this to work you will also need host keys in /etc/ssh_known_hosts | |
31 | RhostsRSAAuthentication no | |
32 | # | |
cf3b46d6 | 33 | RSAAuthentication yes |
3f1168a9 AM |
34 | |
35 | # To disable tunneled clear text passwords, change to no here! | |
cf3b46d6 | 36 | PasswordAuthentication yes |
3f1168a9 AM |
37 | PermitEmptyPasswords no |
38 | # Uncomment to disable s/key passwords | |
39 | #SkeyAuthentication no | |
40 | ||
41 | # To change Kerberos options | |
42 | #KerberosAuthentication no | |
43 | #KerberosOrLocalPasswd yes | |
44 | #AFSTokenPassing no | |
45 | #KerberosTicketCleanup no | |
46 | ||
47 | # Kerberos TGT Passing does only work with the AFS kaserver | |
48 | #KerberosTgtPassing yes | |
49 | ||
50 | CheckMail no | |
20cf0130 | 51 | UseLogin no |