aboutsummaryrefslogtreecommitdiffstats
path: root/crypto/openssh/sshd_config
diff options
context:
space:
mode:
authorBrian Feldman <green@FreeBSD.org>2001-01-12 04:26:22 +0000
committerBrian Feldman <green@FreeBSD.org>2001-01-12 04:26:22 +0000
commit653195e11f881dcee3e02a79aa63f100af6262fc (patch)
tree9e01dc50a171179d081cefe88f9708da2498fbde /crypto/openssh/sshd_config
parent10e33bd2b63b555ee4186dedb56d5be2ac9c65af (diff)
downloadsrc-653195e11f881dcee3e02a79aa63f100af6262fc.tar.gz
src-653195e11f881dcee3e02a79aa63f100af6262fc.zip
MFC: OpenSSH 2.3.0
Reviewed by: freefall
Notes
Notes: svn path=/stable/4/; revision=70948
Diffstat (limited to 'crypto/openssh/sshd_config')
-rw-r--r--crypto/openssh/sshd_config10
1 files changed, 7 insertions, 3 deletions
diff --git a/crypto/openssh/sshd_config b/crypto/openssh/sshd_config
index a76dc5e54640..13fb26504000 100644
--- a/crypto/openssh/sshd_config
+++ b/crypto/openssh/sshd_config
@@ -12,8 +12,12 @@ ServerKeyBits 768
LoginGraceTime 120
KeyRegenerationInterval 3600
PermitRootLogin no
-# Rate-limit sshd connections to 5 connections per 10 seconds
-ConnectionsPerPeriod 5/10
+# Deprecated: rate-limit sshd connections to 5 connections per 10 seconds
+# ConnectionsPerPeriod 5/10
+
+# After 10 unauthenticated connections, refuse 30% of the new ones, and
+# refuse any more than 60 total.
+MaxStartups 10:30:60
# Don't read ~/.rhosts and ~/.shosts files
IgnoreRhosts yes
# Uncomment if you don't trust ~/.ssh/known_hosts for RhostsRSAAuthentication
@@ -41,6 +45,7 @@ PasswordAuthentication yes
PermitEmptyPasswords no
# Uncomment to disable s/key passwords
#SkeyAuthentication no
+#KbdInteractiveAuthentication yes
# To change Kerberos options
#KerberosAuthentication no
@@ -56,4 +61,3 @@ CheckMail yes
# Uncomment if you want to enable sftp
#Subsystem sftp /usr/libexec/sftp-server
-#MaxStartups 10:30:60