1 # This is ssh server systemwide configuration file.
7 #HostKey /etc/ssh/ssh_host_key
8 #HostKey /etc/ssh/ssh_host_dsa_key
11 KeyRegenerationInterval 3600
14 # Don't read ~/.rhosts and ~/.shosts files
16 # Uncomment if you don't trust ~/.ssh/known_hosts for RhostsRSAAuthentication
17 #IgnoreUserKnownHosts yes
28 #obsoletes QuietMode and FascistLogging
30 RhostsAuthentication no
32 # For this to work you will also need host keys in /etc/ssh_known_hosts
33 RhostsRSAAuthentication no
37 # Make password ageing work
38 PAMAuthenticationViaKbdInt yes
40 # To disable tunneled clear text passwords, change to no here!
41 # You also have to change previous line to no (PAMAuthenticationViaKbdInt no)
42 PasswordAuthentication yes
43 PermitEmptyPasswords no
44 # Uncomment to disable s/key passwords
45 #SkeyAuthentication no
47 # To change Kerberos options
48 #KerberosAuthentication no
49 #KerberosOrLocalPasswd yes
51 #KerberosTicketCleanup no
53 # Kerberos TGT Passing does only work with the AFS kaserver
54 #KerberosTgtPassing yes