1# $OpenBSD: ssh_config,v 1.26 2010/01/11 01:39:46 dtucker Exp $ 2 3# This is the ssh client system-wide configuration file. See 4# ssh_config(5) for more information. This file provides defaults for 5# users, and the values can be changed in per-user configuration files 6# or on the command line. 7 8# Configuration data is parsed as follows: 9# 1. command line options 10# 2. user-specific file 11# 3. system-wide file 12# Any configuration value is only changed the first time it is set. 13# Thus, host-specific definitions should be at the beginning of the 14# configuration file, and defaults at the end. 15 16# Site-wide defaults for some commonly used options. For a comprehensive 17# list of available options, their meanings and defaults, please see the 18# ssh_config(5) man page. 19 20 Host * 21 SendEnv LANG LC_* 22 23# Configuration options and default values (see ssh_config(5) for their meaning): 24# 25# Host # (no default) 26# AddressFamily any 27# AskPassGUI yes # (Apple only) 28# BatchMode no 29# BindAddress # (no default) 30# ChallengeResponseAuthentication yes 31# CheckHostIP yes 32# Cipher 3des 33# Ciphers aes128-ctr,aes192-ctr,aes256-ctr,arcfour256,arcfour128,aes128-cbc,3des-cbc,blowfish-cbc,cast128-cbc,aes192-cbc,aes256-cbc,arcfour 34# ClearAllForwardings no 35# Compression no 36# CompressionLevel 6 37# ConnectionAttempts 1 38# ConnectTimeout # (no default) 39# ControlMaster no 40# ControlPath # (no default) 41# ControlPersist no 42# DynamicForward 43# EnableSSHKeysign no 44# EscapeChar ~ 45# ExitOnForwardFailure no 46# ForwardAgent no 47# ForwardX11 no 48# ForwardX11Timeout 1200 49# ForwardX11Trusted no 50# XauthLocation xauth # Default is to search $PATH. It is recommended that a full path be provided. 51# GatewayPorts no 52# GlobalKnownHostsFile /etc/ssh/ssh_known_hosts,/etc/ssh/ssh_known_hosts2 53# GSSAPIAuthentication no 54# GSSAPIDelegateCredentials no 55# GSSAPIKeyExchange no 56# GSSAPITrustDNS no 57# HashKnownHosts no 58# HostbasedAuthentication no 59# HostKeyAlgorithms ecdsa-sha2-nistp256-cert-v01@openssh.com,ecdsa-sha2-nistp384-cert-v01@openssh.com,ecdsa-sha2-nistp521-cert-v01@openssh.com,ssh-rsa-cert-v01@openssh.com,ssh-dss-cert-v01@openssh.com,ssh-rsa-cert-v00@openssh.com,ssh-dss-cert-v00@openssh.com,ecdsa-sha2-nistp256,ecdsa-sha2-nistp384,ecdsa-sha2-nistp521,ssh-rsa,ssh-dss 60# HostKeyAlias # (no default) 61# HostName # (set by command at run-time) 62# IdentitiesOnly no 63# IdentityFile .ssh/id_rsa,.ssh/id_dsa 64# IPQoS lowdelay 65# KbdInteractiveAuthentication yes 66# KbdInteractiveDevices # (no default) 67# KexAlgorithms ecdh-sha2-nistp256,ecdh-sha2-nistp384,ecdh-sha2-nistp521,diffie-hellman-group-exchange-sha256,diffie-hellman-group-exchange-sha1,diffie-hellman-group14-sha1,diffie-hellman-group1-sha1 68# LocalCommand # (no default) 69# LocalForward # (no default) 70# LogLevel INFO 71# MACs hmac-md5,hmac-sha1,umac-64@openssh.com,hmac-ripemd160,hmac-sha1-96,hmac-md5-96,hmac-sha2-256,hmac-sha2-256-96,hmac-sha2-512,hmac-sha2-512-96 72# NoHostAuthenticationForLocalhost no 73# NumberOfPasswordPrompts 3 74# PasswordAuthentication yes 75# PermitLocalCommand no 76# PKCS11Provider # (no default) 77# Port 22 78# PreferredAuthentications gssapi-with-mic,hostbased,publickey,keyboard-interactive,password # (set by ssh at run-time) 79# Protocol 2 80# ProxyCommand # (no default) 81# PubkeyAuthentication yes 82# RekeyLimit 0 83# RemoteForward # (no default) 84# RequestTTY auto 85# RhostsRSAAuthentication no 86# RSAAuthentication yes 87# SendEnv # (no default) 88# ServerAliveCountMax 3 89# ServerAliveInterval 0 90# StrictHostKeyChecking ask 91# TCPKeepAlive yes 92# Tunnel no 93# TunnelDevice any:any 94# UsePrivilegedPort no 95# User # (set by command at run-time) 96# UserKnownHostsFile ~/.ssh/known_hosts,~/.ssh/known_hosts2 97# VerifyHostKeyDNS no 98# VisualHostKey no 99# XAuthLocationi xauth 100