1
0

sshd_config 1.4 KB

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061
  1. # Package generated configuration file
  2. # See the sshd_config(5) manpage for details
  3. ListenAddress 127.0.0.1
  4. Port 2827
  5. Protocol 2
  6. # HostKeys for protocol version 2
  7. HostKey /etc/ssh/ssh_host_rsa_key
  8. HostKey /etc/ssh/ssh_host_dsa_key
  9. HostKey /etc/ssh/ssh_host_ecdsa_key
  10. UsePrivilegeSeparation yes
  11. # Turn strict modes off so that we can operate in /tmp
  12. StrictModes no
  13. # Lifetime and size of ephemeral version 1 server key
  14. KeyRegenerationInterval 3600
  15. ServerKeyBits 1024
  16. # Logging
  17. SyslogFacility AUTH
  18. LogLevel INFO
  19. # Authentication:
  20. LoginGraceTime 120
  21. PermitRootLogin without-password
  22. StrictModes yes
  23. RSAAuthentication yes
  24. PubkeyAuthentication yes
  25. #AuthorizedKeysFile %h/.ssh/authorized_keys
  26. #AuthorizedKeysFile key_test.pub
  27. # Don't read the user's ~/.rhosts and ~/.shosts files
  28. IgnoreRhosts yes
  29. # For this to work you will also need host keys in /etc/ssh_known_hosts
  30. RhostsRSAAuthentication no
  31. # similar for protocol version 2
  32. HostbasedAuthentication no
  33. #IgnoreUserKnownHosts yes
  34. # To enable empty passwords, change to yes (NOT RECOMMENDED)
  35. PermitEmptyPasswords no
  36. # Change to yes to enable challenge-response passwords (beware issues with
  37. # some PAM modules and threads)
  38. ChallengeResponseAuthentication no
  39. # Change to no to disable tunnelled clear text passwords
  40. PasswordAuthentication no
  41. X11Forwarding no
  42. X11DisplayOffset 10
  43. PrintMotd no
  44. PrintLastLog yes
  45. TCPKeepAlive yes
  46. #UseLogin no
  47. AcceptEnv LANG LC_*
  48. Subsystem sftp /usr/lib/openssh/sftp-server
  49. UsePAM yes