sshd_config revision 65674
159191Skris# This is ssh server systemwide configuration file. 259191Skris# 359191Skris# $FreeBSD: head/crypto/openssh/sshd_config 65674 2000-09-10 09:35:38Z kris $ 459191Skris 5325337SjkimPort 22 659191Skris#Protocol 2,1 759191Skris#ListenAddress 0.0.0.0 859191Skris#ListenAddress :: 959191SkrisHostKey /etc/ssh/ssh_host_key 1059191SkrisHostDsaKey /etc/ssh/ssh_host_dsa_key 1159191SkrisServerKeyBits 768 1259191SkrisLoginGraceTime 120 1359191SkrisKeyRegenerationInterval 3600 1459191SkrisPermitRootLogin no 1559191Skris# Rate-limit sshd connections to 5 connections per 10 seconds 1659191SkrisConnectionsPerPeriod 5/10 1759191Skris# Don't read ~/.rhosts and ~/.shosts files 1859191SkrisIgnoreRhosts yes 1959191Skris# Uncomment if you don't trust ~/.ssh/known_hosts for RhostsRSAAuthentication 20111147Snectar#IgnoreUserKnownHosts yes 2159191SkrisStrictModes yes 2259191SkrisX11Forwarding yes 2359191SkrisX11DisplayOffset 10 2459191SkrisPrintMotd yes 2559191SkrisKeepAlive yes 2659191Skris 2759191Skris# Logging 2859191SkrisSyslogFacility AUTH 2959191SkrisLogLevel INFO 3059191Skris#obsoletes QuietMode and FascistLogging 3159191Skris 3259191SkrisRhostsAuthentication no 3359191Skris# 3459191Skris# For this to work you will also need host keys in /etc/ssh_known_hosts 3559191SkrisRhostsRSAAuthentication no 3659191Skris# 3759191SkrisRSAAuthentication yes 3859191Skris 3959191Skris# To disable tunneled clear text passwords, change to no here! 4059191SkrisPasswordAuthentication yes 4159191SkrisPermitEmptyPasswords no 4259191Skris# Uncomment to disable s/key passwords 4359191Skris#SkeyAuthentication no 4459191Skris 4559191Skris# To change Kerberos options 4659191Skris#KerberosAuthentication no 4759191Skris#KerberosOrLocalPasswd yes 4859191Skris#AFSTokenPassing no 4959191Skris#KerberosTicketCleanup no 5059191Skris 5159191Skris# Kerberos TGT Passing does only work with the AFS kaserver 5259191Skris#KerberosTgtPassing yes 5359191Skris 5459191SkrisCheckMail yes 5559191Skris#UseLogin no 5659191Skris 5759191Skris# Uncomment if you want to enable sftp 5859191Skris#Subsystem sftp /usr/libexec/sftp-server 5959191Skris#MaxStartups 10:30:60 6059191Skris