[BACK]Return to sshd_config CVS log [TXT][DIR] Up to [local] / src / usr.bin / ssh

Diff for /src/usr.bin/ssh/sshd_config between version 1.38 and 1.38.2.3

version 1.38, 2001/04/15 21:41:29 version 1.38.2.3, 2002/06/02 22:56:11
Line 3 
Line 3 
 # This is the sshd server system-wide configuration file.  See sshd(8)  # This is the sshd server system-wide configuration file.  See sshd(8)
 # for more information.  # for more information.
   
 Port 22  # The strategy used for options in the default sshd_config shipped with
   # OpenSSH is to specify options with their default value where
   # possible, but leave them commented.  Uncommented options change a
   # default value.
   
   #Port 22
 #Protocol 2,1  #Protocol 2,1
 #ListenAddress 0.0.0.0  #ListenAddress 0.0.0.0
 #ListenAddress ::  #ListenAddress ::
 HostKey /etc/ssh_host_key  
 HostKey /etc/ssh_host_rsa_key  
 HostKey /etc/ssh_host_dsa_key  
 ServerKeyBits 768  
 LoginGraceTime 600  
 KeyRegenerationInterval 3600  
 PermitRootLogin yes  
 #  
 # Don't read ~/.rhosts and ~/.shosts files  
 IgnoreRhosts yes  
 # Uncomment if you don't trust ~/.ssh/known_hosts for RhostsRSAAuthentication  
 #IgnoreUserKnownHosts yes  
 StrictModes yes  
 X11Forwarding no  
 X11DisplayOffset 10  
 PrintMotd yes  
 #PrintLastLog no  
 KeepAlive yes  
   
   # HostKey for protocol version 1
   #HostKey /etc/ssh_host_key
   # HostKeys for protocol version 2
   #HostKey /etc/ssh_host_rsa_key
   #HostKey /etc/ssh_host_dsa_key
   
   # Lifetime and size of ephemeral version 1 server key
   #KeyRegenerationInterval 3600
   #ServerKeyBits 768
   
 # Logging  # Logging
 SyslogFacility AUTH  
 LogLevel INFO  
 #obsoletes QuietMode and FascistLogging  #obsoletes QuietMode and FascistLogging
   #SyslogFacility AUTH
   #LogLevel INFO
   
 RhostsAuthentication no  # Authentication:
 #  
   #LoginGraceTime 600
   #PermitRootLogin yes
   #StrictModes yes
   
   #RSAAuthentication yes
   #PubkeyAuthentication yes
   #AuthorizedKeysFile     .ssh/authorized_keys
   
   # rhosts authentication should not be used
   #RhostsAuthentication no
   # Don't read the user's ~/.rhosts and ~/.shosts files
   #IgnoreRhosts yes
 # For this to work you will also need host keys in /etc/ssh_known_hosts  # For this to work you will also need host keys in /etc/ssh_known_hosts
 RhostsRSAAuthentication no  #RhostsRSAAuthentication no
 # similar for protocol version 2  # similar for protocol version 2
 HostbasedAuthentication no  #HostbasedAuthentication no
 #  # Change to yes if you don't trust ~/.ssh/known_hosts for
 RSAAuthentication yes  # RhostsRSAAuthentication and HostbasedAuthentication
   #IgnoreUserKnownHosts no
   
 # To disable tunneled clear text passwords, change to no here!  # To disable tunneled clear text passwords, change to no here!
 PasswordAuthentication yes  #PasswordAuthentication yes
 PermitEmptyPasswords no  #PermitEmptyPasswords no
   
 # Uncomment to disable s/key passwords  # Change to no to disable s/key passwords
 #ChallengeResponseAuthentication no  #ChallengeResponseAuthentication yes
   
 # To change Kerberos options  # Kerberos options
 #KerberosAuthentication no  #KerberosAuthentication no
 #KerberosOrLocalPasswd yes  #KerberosOrLocalPasswd yes
   #KerberosTicketCleanup yes
   
 #AFSTokenPassing no  #AFSTokenPassing no
 #KerberosTicketCleanup no  
   
 # Kerberos TGT Passing does only work with the AFS kaserver  # Kerberos TGT Passing only works with the AFS kaserver
 #KerberosTgtPassing yes  #KerberosTgtPassing no
   
 #CheckMail yes  #X11Forwarding no
   #X11DisplayOffset 10
   #X11UseLocalhost yes
   #PrintMotd yes
   #PrintLastLog yes
   #KeepAlive yes
 #UseLogin no  #UseLogin no
   #UsePrivilegeSeparation no
   
 #MaxStartups 10:30:60  #MaxStartups 10
 #Banner /etc/issue.net  # no default banner path
 #ReverseMappingCheck yes  #Banner /some/path
   #VerifyReverseMapping no
   
   # override default of no subsystems
 Subsystem       sftp    /usr/libexec/sftp-server  Subsystem       sftp    /usr/libexec/sftp-server
Legend:
Removed from v.1.38  
changed lines
  Added in v.1.38.2.3