1 # $OpenBSD: sshd_config,v 1.39 2001/05/20 17:20:36 markus Exp $
3 # This sshd was compiled with PATH=/usr/bin:/bin:/usr/sbin:/sbin
5 # This is the sshd server system-wide configuration file. See sshd(8)
6 # for more information.
10 #ListenAddress 0.0.0.0
12 HostKey /etc/ssh_host_key
13 HostKey /etc/ssh_host_rsa_key
14 HostKey /etc/ssh_host_dsa_key
17 KeyRegenerationInterval 3600
20 # Don't read ~/.rhosts and ~/.shosts files
22 # Uncomment if you don't trust ~/.ssh/known_hosts for RhostsRSAAuthentication
23 #IgnoreUserKnownHosts yes
34 #obsoletes QuietMode and FascistLogging
36 RhostsAuthentication no
38 # For this to work you will also need host keys in /etc/ssh_known_hosts
39 RhostsRSAAuthentication no
40 # similar for protocol version 2
41 HostbasedAuthentication no
44 PubkeyAuthentication yes
45 #AuthorizedKeysFile %h/.ssh/authorized_keys
46 #AuthorizedKeysFile2 %h/.ssh/authorized_keys2
48 # To disable tunneled clear text passwords, change to no here!
49 PasswordAuthentication yes
50 PermitEmptyPasswords no
52 # Uncomment to disable s/key passwords
53 #ChallengeResponseAuthentication no
55 # Uncomment to enable PAM keyboard-interactive authentication
56 # Warning: enabling this may bypass the setting of 'PasswordAuthentication'
57 #PAMAuthenticationViaKbdInt yes
59 # To change Kerberos options
60 #KerberosAuthentication no
61 #KerberosOrLocalPasswd yes
63 #KerberosTicketCleanup no
65 # Kerberos TGT Passing does only work with the AFS kaserver
66 #KerberosTgtPassing yes
72 #Banner /etc/issue.net
73 #ReverseMappingCheck yes
75 Subsystem sftp /usr/libexec/sftp-server