aboutsummaryrefslogtreecommitdiffstats
path: root/crypto/openssh/sshd_config
diff options
context:
space:
mode:
authorBrian Feldman <green@FreeBSD.org>2001-09-28 01:33:53 +0000
committerBrian Feldman <green@FreeBSD.org>2001-09-28 01:33:53 +0000
commit7b974c5b2f8afd9b94cc4e81337b3a596d1c485d (patch)
tree62ff76304bb7160de61a6d3dbb06d87b2c0d65e8 /crypto/openssh/sshd_config
parent555577281e53697e4483973c3ecc7d9c1af8af3c (diff)
downloadsrc-7b974c5b2f8afd9b94cc4e81337b3a596d1c485d.tar.gz
src-7b974c5b2f8afd9b94cc4e81337b3a596d1c485d.zip
MFC: OpenSSH 2.9
The only difference between this and what's in -CURRENT is that the default /etc/ssh/ssh_config sets "Protocol 1,2" for all hosts. This can be overrided entirely in user ~/.ssh/config files, as always.
Notes
Notes: svn path=/stable/4/; revision=84071
Diffstat (limited to 'crypto/openssh/sshd_config')
-rw-r--r--crypto/openssh/sshd_config22
1 files changed, 15 insertions, 7 deletions
diff --git a/crypto/openssh/sshd_config b/crypto/openssh/sshd_config
index 7da9ce7ef563..854311f91087 100644
--- a/crypto/openssh/sshd_config
+++ b/crypto/openssh/sshd_config
@@ -1,13 +1,15 @@
-# This is ssh server systemwide configuration file.
-#
+# $OpenBSD: sshd_config,v 1.38 2001/04/15 21:41:29 deraadt Exp $
# $FreeBSD$
+# This is the sshd server system-wide configuration file. See sshd(8)
+# for more information.
+
Port 22
#Protocol 2,1
#ListenAddress 0.0.0.0
#ListenAddress ::
HostKey /etc/ssh/ssh_host_key
-HostDsaKey /etc/ssh/ssh_host_dsa_key
+HostKey /etc/ssh/ssh_host_dsa_key
ServerKeyBits 768
LoginGraceTime 120
KeyRegenerationInterval 3600
@@ -25,6 +27,7 @@ StrictModes yes
X11Forwarding yes
X11DisplayOffset 10
PrintMotd yes
+#PrintLastLog no
KeepAlive yes
# Logging
@@ -36,15 +39,17 @@ RhostsAuthentication no
#
# For this to work you will also need host keys in /etc/ssh_known_hosts
RhostsRSAAuthentication no
+# similar for protocol version 2
+HostbasedAuthentication no
#
RSAAuthentication yes
# To disable tunneled clear text passwords, change to no here!
PasswordAuthentication yes
PermitEmptyPasswords no
+
# Uncomment to disable s/key passwords
-#SkeyAuthentication no
-#KbdInteractiveAuthentication yes
+#ChallengeResponseAuthentication no
# To change Kerberos options
#KerberosAuthentication no
@@ -58,5 +63,8 @@ PermitEmptyPasswords no
CheckMail yes
#UseLogin no
-# Uncomment if you want to enable sftp
-#Subsystem sftp /usr/libexec/sftp-server
+#MaxStartups 10:30:60
+#Banner /etc/issue.net
+#ReverseMappingCheck yes
+
+Subsystem sftp /usr/libexec/sftp-server