sshd_config revision 70990
1# This is ssh server systemwide configuration file. 2# 3# $FreeBSD: head/crypto/openssh/sshd_config 70990 2001-01-13 07:57:43Z green $ 4 5Port 22 6#Protocol 2,1 7#ListenAddress 0.0.0.0 8#ListenAddress :: 9HostKey /etc/ssh/ssh_host_key 10HostDsaKey /etc/ssh/ssh_host_dsa_key 11ServerKeyBits 768 12LoginGraceTime 120 13KeyRegenerationInterval 3600 14PermitRootLogin no 15# ConnectionsPerPeriod has been deprecated completely 16 17# After 10 unauthenticated connections, refuse 30% of the new ones, and 18# refuse any more than 60 total. 19MaxStartups 10:30:60 20# Don't read ~/.rhosts and ~/.shosts files 21IgnoreRhosts yes 22# Uncomment if you don't trust ~/.ssh/known_hosts for RhostsRSAAuthentication 23#IgnoreUserKnownHosts yes 24StrictModes yes 25X11Forwarding yes 26X11DisplayOffset 10 27PrintMotd yes 28KeepAlive yes 29 30# Logging 31SyslogFacility AUTH 32LogLevel INFO 33#obsoletes QuietMode and FascistLogging 34 35RhostsAuthentication no 36# 37# For this to work you will also need host keys in /etc/ssh_known_hosts 38RhostsRSAAuthentication no 39# 40RSAAuthentication yes 41 42# To disable tunneled clear text passwords, change to no here! 43PasswordAuthentication yes 44PermitEmptyPasswords no 45# Uncomment to disable s/key passwords 46#SkeyAuthentication no 47#KbdInteractiveAuthentication yes 48 49# To change Kerberos options 50#KerberosAuthentication no 51#KerberosOrLocalPasswd yes 52#AFSTokenPassing no 53#KerberosTicketCleanup no 54 55# Kerberos TGT Passing does only work with the AFS kaserver 56#KerberosTgtPassing yes 57 58CheckMail yes 59#UseLogin no 60 61# Uncomment if you want to enable sftp 62#Subsystem sftp /usr/libexec/sftp-server 63