1 # $OpenBSD: sshd_config,v 1.38 2001/04/15 21:41:29 deraadt Exp $
3 # This sshd was compiled with PATH=/usr/bin:/bin:/usr/sbin:/sbin
5 # This is the sshd server system-wide configuration file. See sshd(8)
6 # for more information.
10 #ListenAddress 0.0.0.0
12 HostKey /etc/ssh_host_key
13 HostKey /etc/ssh_host_rsa_key
14 HostKey /etc/ssh_host_dsa_key
17 KeyRegenerationInterval 3600
20 # Don't read ~/.rhosts and ~/.shosts files
22 # Uncomment if you don't trust ~/.ssh/known_hosts for RhostsRSAAuthentication
23 #IgnoreUserKnownHosts yes
34 #obsoletes QuietMode and FascistLogging
36 RhostsAuthentication no
38 # For this to work you will also need host keys in /etc/ssh_known_hosts
39 RhostsRSAAuthentication no
40 # similar for protocol version 2
41 HostbasedAuthentication no
45 # To disable tunneled clear text passwords, change to no here!
46 PasswordAuthentication yes
47 PermitEmptyPasswords no
49 # Comment to enable s/key passwords or PAM interactive authentication
50 # NB. Neither of these are compiled in by default. Please read the
51 # notes in the sshd(8) manpage before enabling this on a PAM system.
52 ChallengeResponseAuthentication no
54 # To change Kerberos options
55 #KerberosAuthentication no
56 #KerberosOrLocalPasswd yes
58 #KerberosTicketCleanup no
60 # Kerberos TGT Passing does only work with the AFS kaserver
61 #KerberosTgtPassing yes
67 #Banner /etc/issue.net
68 #ReverseMappingCheck yes
70 Subsystem sftp /usr/libexec/sftp-server