rob@comiskey:/etc/ssh$ cat sshd_config# $OpenBSD: sshd_config,v 1.59 2004/09/2

1. rob@comiskey:/etc/ssh$ cat sshd_config
2. # $OpenBSD: sshd_config,v 1.59 2004/09/25 11:17:16 markus Exp $
3.  
4. # This is the sshd server system-wide configuration file. See
5. # sshd_config(5) for more information.
6.  
7. # This sshd was compiled with PATH=/usr/bin:/bin:/usr/sbin:/sbin
8.  
9. # The strategy used for options in the default sshd_config shipped with
10. # OpenSSH is to specify options with their default value where
11. # possible, but leave them commented. Uncommented options change a
12. # default value.
13.  
14. #Port 2222
15. AllowGroups sshlogin
16. #Protocol 2,1
17. ListenAddress 74.207.226.77
18. ListenAddress ::
19.  
20. # HostKey for protocol version 1
21. #HostKey /etc/ssh/ssh_host_key
22. # HostKeys for protocol version 2
23. #HostKey /etc/ssh/ssh_host_rsa_key
24. #HostKey /etc/ssh/ssh_host_dsa_key
25.  
26. # Lifetime and size of ephemeral version 1 server key
27. #KeyRegenerationInterval 3600
28. #ServerKeyBits 768
29.  
30. # Logging
31. #obsoletes QuietMode and FascistLogging
32. #SyslogFacility AUTH
33. #LogLevel INFO
34.  
35. # Authentication:
36.  
37. #LoginGraceTime 120
38. PermitRootLogin no
39. #StrictModes yes
40.  
41. #RSAAuthentication yes
42. #PubkeyAuthentication yes
43. #AuthorizedKeysFile .ssh/authorized_keys
44.  
45. # rhosts authentication should not be used
46. #RhostsAuthentication no
47. # Don't read the user's ~/.rhosts and ~/.shosts files
48. #IgnoreRhosts yes
49. # For this to work you will also need host keys in /etc/ssh/ssh_known_hosts
50. #RhostsRSAAuthentication no
51. # similar for protocol version 2
52. #HostbasedAuthentication no
53. # Change to yes if you don't trust ~/.ssh/known_hosts for
54. # RhostsRSAAuthentication and HostbasedAuthentication
55. #IgnoreUserKnownHosts no
56.  
57. # To disable tunneled clear text passwords, change to no here!
58. #PasswordAuthentication yes
59. #PermitEmptyPasswords no
60.  
61. # Change to no to disable s/key passwords
62. #ChallengeResponseAuthentication yes
63.  
64. # Kerberos options
65. #KerberosAuthentication no
66. #KerberosOrLocalPasswd yes
67. #KerberosTicketCleanup yes
68.  
69. #AFSTokenPassing no
70.  
71. # Kerberos TGT Passing only works with the AFS kaserver
72. #KerberosTgtPassing no
73.  
74. # Set this to 'yes' to enable PAM keyboard-interactive authentication
75. # Warning: enabling this may bypass the setting of 'PasswordAuthentication'
76. #PAMAuthenticationViaKbdInt no
77.  
78. #X11Forwarding no
79. #X11DisplayOffset 10
80. #X11UseLocalhost yes
81. #PrintMotd yes
82. #PrintLastLog yes
83. #KeepAlive yes
84. #UseLogin no
85. #UsePrivilegeSeparation yes
86. #PermitUserEnvironment no
87. #Compression yes
88.  
89. #MaxStartups 10
90. # no default banner path
91. #Banner /some/path
92. #VerifyReverseMapping no
93.  
94. # override default of no subsystems
95. Subsystem sftp /usr/libexec/sftp-server
96. rob@comiskey:/etc/ssh$