]>
Commit | Line | Data |
---|---|---|
8efc0c15 | 1 | # This is ssh server systemwide configuration file. |
2 | ||
3 | Port 22 | |
4 | ListenAddress 0.0.0.0 | |
f1bcacf9 | 5 | HostKey /etc/ssh/ssh_host_key |
8efc0c15 | 6 | ServerKeyBits 768 |
7 | LoginGraceTime 600 | |
8 | KeyRegenerationInterval 3600 | |
9 | PermitRootLogin yes | |
272b7f60 | 10 | |
11 | # | |
12 | # Loglevel replaces QuietMode and FascistLogging | |
13 | # | |
14 | LogLevel INFO | |
15 | ||
8efc0c15 | 16 | # |
17 | # Don't read ~/.rhosts and ~/.shosts files | |
18 | IgnoreRhosts yes | |
19 | StrictModes yes | |
8efc0c15 | 20 | X11Forwarding yes |
21 | X11DisplayOffset 10 | |
22 | FascistLogging no | |
23 | PrintMotd yes | |
24 | KeepAlive yes | |
272b7f60 | 25 | CheckMail no |
26 | UseLogin no | |
8efc0c15 | 27 | SyslogFacility AUTH |
28 | RhostsAuthentication no | |
272b7f60 | 29 | |
8efc0c15 | 30 | # |
f1bcacf9 | 31 | # For this to work you will also need host keys in /etc/ssh/ssh_known_hosts |
8efc0c15 | 32 | # |
272b7f60 | 33 | RhostsRSAAuthentication no |
34 | ||
8efc0c15 | 35 | RSAAuthentication yes |
36 | ||
37 | # To disable tunneled clear text passwords, change to no here! | |
38 | PasswordAuthentication yes | |
39 | PermitEmptyPasswords no | |
272b7f60 | 40 | |
41 | # | |
42 | # Uncomment to disable s/key passwords (must be compiled with s/key support) | |
43 | # | |
8efc0c15 | 44 | #SkeyAuthentication no |
45 | ||
272b7f60 | 46 | # |
47 | # To change Kerberos options (must be compiled with Kerberos support) | |
48 | # | |
8efc0c15 | 49 | #KerberosAuthentication no |
50 | #KerberosOrLocalPasswd yes | |
51 | #AFSTokenPassing no | |
52 | #KerberosTicketCleanup no | |
8efc0c15 | 53 | # Kerberos TGT Passing does only work with the AFS kaserver |
54 | #KerberosTgtPassing yes |