projects / packages / openssh.git / blame
| Commit | Line | Data |
|---|---|---|
| cf3b46d6 AF |
1 | # This is ssh server systemwide configuration file. |
| 2 | ||
| 3 | Port 22 | |
| 3f1168a9 AM |
4 | #Protocol 2,1 |
| 5 | #ListenAddress 0.0.0.0 | |
| 6 | #ListenAddress :: | |
| 7 | HostKey /etc/ssh_host_key | |
| cf3b46d6 AF |
8 | ServerKeyBits 768 |
| 9 | LoginGraceTime 600 | |
| cf3b46d6 AF |
10 | KeyRegenerationInterval 3600 |
| 11 | PermitRootLogin no | |
| 3f1168a9 AM |
12 | # |
| 13 | # Don't read ~/.rhosts and ~/.shosts files | |
| cf3b46d6 | 14 | IgnoreRhosts yes |
| 3f1168a9 AM |
15 | # Uncomment if you don't trust ~/.ssh/known_hosts for RhostsRSAAuthentication |
| 16 | #IgnoreUserKnownHosts yes | |
| cf3b46d6 | 17 | StrictModes yes |
| 3f1168a9 | 18 | X11Forwarding no |
| cf3b46d6 | 19 | X11DisplayOffset 10 |
| cf3b46d6 AF |
20 | PrintMotd yes |
| 21 | KeepAlive yes | |
| 3f1168a9 AM |
22 | |
| 23 | # Logging | |
| 24 | SyslogFacility AUTH | |
| 25 | LogLevel INFO | |
| 26 | #obsoletes QuietMode and FascistLogging | |
| 27 | ||
| cf3b46d6 | 28 | RhostsAuthentication no |
| 3f1168a9 AM |
29 | # |
| 30 | # For this to work you will also need host keys in /etc/ssh_known_hosts | |
| 31 | RhostsRSAAuthentication no | |
| 32 | # | |
| cf3b46d6 | 33 | RSAAuthentication yes |
| 3f1168a9 AM |
34 | |
| 35 | # To disable tunneled clear text passwords, change to no here! | |
| cf3b46d6 | 36 | PasswordAuthentication yes |
| 3f1168a9 AM |
37 | PermitEmptyPasswords no |
| 38 | # Uncomment to disable s/key passwords | |
| 39 | #SkeyAuthentication no | |
| 40 | ||
| 41 | # To change Kerberos options | |
| 42 | #KerberosAuthentication no | |
| 43 | #KerberosOrLocalPasswd yes | |
| 44 | #AFSTokenPassing no | |
| 45 | #KerberosTicketCleanup no | |
| 46 | ||
| 47 | # Kerberos TGT Passing does only work with the AFS kaserver | |
| 48 | #KerberosTgtPassing yes | |
| 49 | ||
| 50 | CheckMail no | |
| 20cf0130 | 51 | UseLogin no |