sshd_config revision 65674 
154359Sroberto# This is ssh server systemwide configuration file.
2182007Sroberto#
354359Sroberto# $FreeBSD: head/crypto/openssh/sshd_config 65674 2000-09-10 09:35:38Z kris $
454359Sroberto
554359SrobertoPort 22
654359Sroberto#Protocol 2,1
754359Sroberto#ListenAddress 0.0.0.0
854359Sroberto#ListenAddress ::
956746SrobertoHostKey /etc/ssh/ssh_host_key
1054359SrobertoHostDsaKey /etc/ssh/ssh_host_dsa_key
1154359SrobertoServerKeyBits 768
1254359SrobertoLoginGraceTime 120
1354359SrobertoKeyRegenerationInterval 3600
1454359SrobertoPermitRootLogin no
1554359Sroberto# Rate-limit sshd connections to 5 connections per 10 seconds
1654359SrobertoConnectionsPerPeriod 5/10
1782498Sroberto# Don't read ~/.rhosts and ~/.shosts files
1882498SrobertoIgnoreRhosts yes
1982498Sroberto# Uncomment if you don't trust ~/.ssh/known_hosts for RhostsRSAAuthentication
20280849Scy#IgnoreUserKnownHosts yes
21280849ScyStrictModes yes
22280849ScyX11Forwarding yes
23280849ScyX11DisplayOffset 10
24280849ScyPrintMotd yes
2554359SrobertoKeepAlive yes
2654359Sroberto
2754359Sroberto# Logging
2854359SrobertoSyslogFacility AUTH
2954359SrobertoLogLevel INFO
3054359Sroberto#obsoletes QuietMode and FascistLogging
3154359Sroberto
3254359SrobertoRhostsAuthentication no
3354359Sroberto#
3454359Sroberto# For this to work you will also need host keys in /etc/ssh_known_hosts
3554359SrobertoRhostsRSAAuthentication no
3654359Sroberto#
3754359SrobertoRSAAuthentication yes
3854359Sroberto
3954359Sroberto# To disable tunneled clear text passwords, change to no here!
4054359SrobertoPasswordAuthentication yes
4154359SrobertoPermitEmptyPasswords no
4254359Sroberto# Uncomment to disable s/key passwords 
4354359Sroberto#SkeyAuthentication no
4454359Sroberto
4554359Sroberto# To change Kerberos options
4654359Sroberto#KerberosAuthentication no
4754359Sroberto#KerberosOrLocalPasswd yes
4854359Sroberto#AFSTokenPassing no
4954359Sroberto#KerberosTicketCleanup no
5054359Sroberto
51182007Sroberto# Kerberos TGT Passing does only work with the AFS kaserver
5254359Sroberto#KerberosTgtPassing yes
5354359Sroberto
5454359SrobertoCheckMail yes
5554359Sroberto#UseLogin no
5654359Sroberto
57280849Scy# Uncomment if you want to enable sftp
5854359Sroberto#Subsystem	sftp	/usr/libexec/sftp-server
5954359Sroberto#MaxStartups 10:30:60
6054359Sroberto