[BACK]Return to sshd_config CVS log [TXT][DIR] Up to [local] / src / usr.bin / ssh

Diff for /src/usr.bin/ssh/sshd_config between version 1.21.2.6 and 1.22

version 1.21.2.6, 2002/03/08 17:04:43 version 1.22, 2000/11/12 19:50:39
Line 1 
Line 1 
 #       $OpenBSD$  # This is ssh server systemwide configuration file.
   
 # This is the sshd server system-wide configuration file.  See sshd(8)  Port 22
 # for more information.  
   
 # The strategy used for options in the default sshd_config shipped with  
 # OpenSSH is to specify options with their default value where  
 # possible, but leave them commented.  Uncommented options change a  
 # default value.  
   
 #Port 22  
 #Protocol 2,1  #Protocol 2,1
 #ListenAddress 0.0.0.0  #ListenAddress 0.0.0.0
 #ListenAddress ::  #ListenAddress ::
   HostKey /etc/ssh_host_key
 # HostKey for protocol version 1  
 #HostKey /etc/ssh_host_key  
 # HostKeys for protocol version 2  
 #HostKey /etc/ssh_host_rsa_key  
 #HostKey /etc/ssh_host_dsa_key  #HostKey /etc/ssh_host_dsa_key
   ServerKeyBits 768
   LoginGraceTime 600
   KeyRegenerationInterval 3600
   PermitRootLogin yes
   #
   # Don't read ~/.rhosts and ~/.shosts files
   IgnoreRhosts yes
   # Uncomment if you don't trust ~/.ssh/known_hosts for RhostsRSAAuthentication
   #IgnoreUserKnownHosts yes
   StrictModes yes
   X11Forwarding no
   X11DisplayOffset 10
   PrintMotd yes
   KeepAlive yes
   
 # Lifetime and size of ephemeral version 1 server key  
 #KeyRegenerationInterval 3600  
 #ServerKeyBits 768  
   
 # Logging  # Logging
   SyslogFacility AUTH
   LogLevel INFO
 #obsoletes QuietMode and FascistLogging  #obsoletes QuietMode and FascistLogging
 #SyslogFacility AUTH  
 #LogLevel INFO  
   
 # Authentication:  RhostsAuthentication no
   #
 #LoginGraceTime 600  
 #PermitRootLogin yes  
 #StrictModes yes  
   
 #RSAAuthentication yes  
 #PubkeyAuthentication yes  
 #AuthorizedKeysFile     .ssh/authorized_keys  
   
 # rhosts authentication should not be used  
 #RhostsAuthentication no  
 # Don't read the user's ~/.rhosts and ~/.shosts files  
 #IgnoreRhosts yes  
 # For this to work you will also need host keys in /etc/ssh_known_hosts  # For this to work you will also need host keys in /etc/ssh_known_hosts
 #RhostsRSAAuthentication no  RhostsRSAAuthentication no
 # similar for protocol version 2  #
 #HostbasedAuthentication no  RSAAuthentication yes
 # Change to yes if you don't trust ~/.ssh/known_hosts for  
 # RhostsRSAAuthentication and HostbasedAuthentication  
 #IgnoreUserKnownHosts no  
   
 # To disable tunneled clear text passwords, change to no here!  # To disable tunneled clear text passwords, change to no here!
 #PasswordAuthentication yes  PasswordAuthentication yes
 #PermitEmptyPasswords no  PermitEmptyPasswords no
   # Uncomment to disable s/key passwords
   #SkeyAuthentication no
   #KbdInteractiveAuthentication yes
   
 # Change to no to disable s/key passwords  # To change Kerberos options
 #ChallengeResponseAuthentication yes  #KerberosAuthentication no
   
 # Kerberos options  
 # KerberosAuthentication automatically enabled if keyfile exists  
 #KerberosAuthentication yes  
 #KerberosOrLocalPasswd yes  #KerberosOrLocalPasswd yes
 #KerberosTicketCleanup yes  #AFSTokenPassing no
   #KerberosTicketCleanup no
   
 # AFSTokenPassing automatically enabled if k_hasafs() is true  # Kerberos TGT Passing does only work with the AFS kaserver
 #AFSTokenPassing yes  #KerberosTgtPassing yes
   
 # Kerberos TGT Passing only works with the AFS kaserver  #CheckMail yes
 #KerberosTgtPassing no  
   
 #X11Forwarding no  
 #X11DisplayOffset 10  
 #X11UseLocalhost yes  
 #PrintMotd yes  
 #PrintLastLog yes  
 #KeepAlive yes  
 #UseLogin no  #UseLogin no
   
 #MaxStartups 10  # Uncomment if you want to enable sftp
 # no default banner path  #Subsystem      sftp    /usr/libexec/sftp-server
 #Banner /some/path  #MaxStartups 10:30:60
 #VerifyReverseMapping no  
   
 # override default of no subsystems  
 Subsystem       sftp    /usr/libexec/sftp-server  
Legend:
Removed from v.1.21.2.6  
changed lines
  Added in v.1.22