diff options
Diffstat (limited to 'contrib/cygwin/ssh-host-config')
| -rw-r--r-- | contrib/cygwin/ssh-host-config | 23 |
1 files changed, 9 insertions, 14 deletions
diff --git a/contrib/cygwin/ssh-host-config b/contrib/cygwin/ssh-host-config index e9c56aea9..2c6db51e5 100644 --- a/contrib/cygwin/ssh-host-config +++ b/contrib/cygwin/ssh-host-config | |||
| @@ -279,14 +279,12 @@ then | |||
| 279 | # Host * | 279 | # Host * |
| 280 | # ForwardAgent no | 280 | # ForwardAgent no |
| 281 | # ForwardX11 no | 281 | # ForwardX11 no |
| 282 | # RhostsAuthentication no | ||
| 282 | # RhostsRSAAuthentication no | 283 | # RhostsRSAAuthentication no |
| 283 | # RSAAuthentication yes | 284 | # RSAAuthentication yes |
| 284 | # PasswordAuthentication yes | 285 | # PasswordAuthentication yes |
| 285 | # HostbasedAuthentication no | ||
| 286 | # BatchMode no | 286 | # BatchMode no |
| 287 | # CheckHostIP yes | 287 | # CheckHostIP yes |
| 288 | # AddressFamily any | ||
| 289 | # ConnectTimeout 0 | ||
| 290 | # StrictHostKeyChecking ask | 288 | # StrictHostKeyChecking ask |
| 291 | # IdentityFile ~/.ssh/identity | 289 | # IdentityFile ~/.ssh/identity |
| 292 | # IdentityFile ~/.ssh/id_dsa | 290 | # IdentityFile ~/.ssh/id_dsa |
| @@ -399,7 +397,7 @@ Port $port_number | |||
| 399 | #HostKey ${SYSCONFDIR}/ssh_host_dsa_key | 397 | #HostKey ${SYSCONFDIR}/ssh_host_dsa_key |
| 400 | 398 | ||
| 401 | # Lifetime and size of ephemeral version 1 server key | 399 | # Lifetime and size of ephemeral version 1 server key |
| 402 | #KeyRegenerationInterval 1h | 400 | #KeyRegenerationInterval 3600 |
| 403 | #ServerKeyBits 768 | 401 | #ServerKeyBits 768 |
| 404 | 402 | ||
| 405 | # Logging | 403 | # Logging |
| @@ -409,7 +407,7 @@ Port $port_number | |||
| 409 | 407 | ||
| 410 | # Authentication: | 408 | # Authentication: |
| 411 | 409 | ||
| 412 | #LoginGraceTime 2m | 410 | #LoginGraceTime 120 |
| 413 | #PermitRootLogin yes | 411 | #PermitRootLogin yes |
| 414 | # The following setting overrides permission checks on host key files | 412 | # The following setting overrides permission checks on host key files |
| 415 | # and directories. For security reasons set this to "yes" when running | 413 | # and directories. For security reasons set this to "yes" when running |
| @@ -420,6 +418,10 @@ StrictModes no | |||
| 420 | #PubkeyAuthentication yes | 418 | #PubkeyAuthentication yes |
| 421 | #AuthorizedKeysFile .ssh/authorized_keys | 419 | #AuthorizedKeysFile .ssh/authorized_keys |
| 422 | 420 | ||
| 421 | # rhosts authentication should not be used | ||
| 422 | #RhostsAuthentication no | ||
| 423 | # Don't read the user's ~/.rhosts and ~/.shosts files | ||
| 424 | #IgnoreRhosts yes | ||
| 423 | # For this to work you will also need host keys in ${SYSCONFDIR}/ssh_known_hosts | 425 | # For this to work you will also need host keys in ${SYSCONFDIR}/ssh_known_hosts |
| 424 | #RhostsRSAAuthentication no | 426 | #RhostsRSAAuthentication no |
| 425 | # similar for protocol version 2 | 427 | # similar for protocol version 2 |
| @@ -427,8 +429,6 @@ StrictModes no | |||
| 427 | # Change to yes if you don't trust ~/.ssh/known_hosts for | 429 | # Change to yes if you don't trust ~/.ssh/known_hosts for |
| 428 | # RhostsRSAAuthentication and HostbasedAuthentication | 430 | # RhostsRSAAuthentication and HostbasedAuthentication |
| 429 | #IgnoreUserKnownHosts no | 431 | #IgnoreUserKnownHosts no |
| 430 | # Don't read the user's ~/.rhosts and ~/.shosts files | ||
| 431 | #IgnoreRhosts yes | ||
| 432 | 432 | ||
| 433 | # To disable tunneled clear text passwords, change to no here! | 433 | # To disable tunneled clear text passwords, change to no here! |
| 434 | #PasswordAuthentication yes | 434 | #PasswordAuthentication yes |
| @@ -437,8 +437,6 @@ StrictModes no | |||
| 437 | # Change to no to disable s/key passwords | 437 | # Change to no to disable s/key passwords |
| 438 | #ChallengeResponseAuthentication yes | 438 | #ChallengeResponseAuthentication yes |
| 439 | 439 | ||
| 440 | #AllowTcpForwarding yes | ||
| 441 | #GatewayPorts no | ||
| 442 | #X11Forwarding no | 440 | #X11Forwarding no |
| 443 | #X11DisplayOffset 10 | 441 | #X11DisplayOffset 10 |
| 444 | #X11UseLocalhost yes | 442 | #X11UseLocalhost yes |
| @@ -449,14 +447,11 @@ StrictModes no | |||
| 449 | UsePrivilegeSeparation $privsep_used | 447 | UsePrivilegeSeparation $privsep_used |
| 450 | #PermitUserEnvironment no | 448 | #PermitUserEnvironment no |
| 451 | #Compression yes | 449 | #Compression yes |
| 452 | #ClientAliveInterval 0 | ||
| 453 | #ClientAliveCountMax 3 | ||
| 454 | #UseDNS yes | ||
| 455 | #PidFile /var/run/sshd.pid | ||
| 456 | #MaxStartups 10 | ||
| 457 | 450 | ||
| 451 | #MaxStartups 10 | ||
| 458 | # no default banner path | 452 | # no default banner path |
| 459 | #Banner /some/path | 453 | #Banner /some/path |
| 454 | #VerifyReverseMapping no | ||
| 460 | 455 | ||
| 461 | # override default of no subsystems | 456 | # override default of no subsystems |
| 462 | Subsystem sftp /usr/sbin/sftp-server | 457 | Subsystem sftp /usr/sbin/sftp-server |