sshd_config revision 65674
154359Sroberto# This is ssh server systemwide configuration file. 2182007Sroberto# 354359Sroberto# $FreeBSD: head/crypto/openssh/sshd_config 65674 2000-09-10 09:35:38Z kris $ 454359Sroberto 554359SrobertoPort 22 654359Sroberto#Protocol 2,1 754359Sroberto#ListenAddress 0.0.0.0 854359Sroberto#ListenAddress :: 956746SrobertoHostKey /etc/ssh/ssh_host_key 1054359SrobertoHostDsaKey /etc/ssh/ssh_host_dsa_key 1154359SrobertoServerKeyBits 768 1254359SrobertoLoginGraceTime 120 1354359SrobertoKeyRegenerationInterval 3600 1454359SrobertoPermitRootLogin no 1554359Sroberto# Rate-limit sshd connections to 5 connections per 10 seconds 1654359SrobertoConnectionsPerPeriod 5/10 1782498Sroberto# Don't read ~/.rhosts and ~/.shosts files 1882498SrobertoIgnoreRhosts yes 1982498Sroberto# Uncomment if you don't trust ~/.ssh/known_hosts for RhostsRSAAuthentication 20280849Scy#IgnoreUserKnownHosts yes 21280849ScyStrictModes yes 22280849ScyX11Forwarding yes 23280849ScyX11DisplayOffset 10 24280849ScyPrintMotd yes 2554359SrobertoKeepAlive yes 2654359Sroberto 2754359Sroberto# Logging 2854359SrobertoSyslogFacility AUTH 2954359SrobertoLogLevel INFO 3054359Sroberto#obsoletes QuietMode and FascistLogging 3154359Sroberto 3254359SrobertoRhostsAuthentication no 3354359Sroberto# 3454359Sroberto# For this to work you will also need host keys in /etc/ssh_known_hosts 3554359SrobertoRhostsRSAAuthentication no 3654359Sroberto# 3754359SrobertoRSAAuthentication yes 3854359Sroberto 3954359Sroberto# To disable tunneled clear text passwords, change to no here! 4054359SrobertoPasswordAuthentication yes 4154359SrobertoPermitEmptyPasswords no 4254359Sroberto# Uncomment to disable s/key passwords 4354359Sroberto#SkeyAuthentication no 4454359Sroberto 4554359Sroberto# To change Kerberos options 4654359Sroberto#KerberosAuthentication no 4754359Sroberto#KerberosOrLocalPasswd yes 4854359Sroberto#AFSTokenPassing no 4954359Sroberto#KerberosTicketCleanup no 5054359Sroberto 51182007Sroberto# Kerberos TGT Passing does only work with the AFS kaserver 5254359Sroberto#KerberosTgtPassing yes 5354359Sroberto 5454359SrobertoCheckMail yes 5554359Sroberto#UseLogin no 5654359Sroberto 57280849Scy# Uncomment if you want to enable sftp 5854359Sroberto#Subsystem sftp /usr/libexec/sftp-server 5954359Sroberto#MaxStartups 10:30:60 6054359Sroberto