1 # This is ssh server systemwide configuration file.
7 HostKey /etc/ssh_host_key
8 HostKey /etc/ssh_host_rsa_key
9 HostKey /etc/ssh_host_dsa_key
12 KeyRegenerationInterval 3600
15 # Don't read ~/.rhosts and ~/.shosts files
17 # Uncomment if you don't trust ~/.ssh/known_hosts for RhostsRSAAuthentication
18 #IgnoreUserKnownHosts yes
28 #obsoletes QuietMode and FascistLogging
30 RhostsAuthentication no
32 # For this to work you will also need host keys in /etc/ssh_known_hosts
33 RhostsRSAAuthentication no
37 # To disable tunneled clear text passwords, change to no here!
38 PasswordAuthentication yes
39 PermitEmptyPasswords no
40 # Uncomment to disable s/key passwords
41 #SkeyAuthentication no
42 #KbdInteractiveAuthentication yes
44 # To change Kerberos options
45 #KerberosAuthentication no
46 #KerberosOrLocalPasswd yes
48 #KerberosTicketCleanup no
50 # Kerberos TGT Passing does only work with the AFS kaserver
51 #KerberosTgtPassing yes
56 # Uncomment if you want to enable sftp
57 #Subsystem sftp /usr/libexec/sftp-server