# This is ssh server systemwide configuration file. Port 22 ListenAddress 0.0.0.0 HostKey /etc/ssh/ssh_host_key ServerKeyBits 768 LoginGraceTime 600 KeyRegenerationInterval 3600 PermitRootLogin yes # # Loglevel replaces QuietMode and FascistLogging # SyslogFacility AUTH LogLevel INFO # # Don't read ~/.rhosts and ~/.shosts files StrictModes yes X11Forwarding no X11DisplayOffset 10 PrintMotd yes KeepAlive yes CheckMail no UseLogin no SyslogFacility AUTH RhostsAuthentication no # # For this to work you will also need host keys in /etc/ssh/ssh_known_hosts # RhostsRSAAuthentication no # # Don't read ~/.rhosts and ~/.shosts files # IgnoreRhosts yes # # Uncomment if you don't trust ~/.ssh/known_hosts for RhostsRSAAuthentication # #IgnoreUserKnownHosts yes RSAAuthentication yes # To disable tunneled clear text passwords, change to no here! PasswordAuthentication yes PermitEmptyPasswords no # # Uncomment to disable s/key passwords (must be compiled with s/key support) # #SkeyAuthentication no # # To change Kerberos options (must be compiled with Kerberos support) # #KerberosAuthentication no #KerberosOrLocalPasswd yes #AFSTokenPassing no #KerberosTicketCleanup no # Kerberos TGT Passing does only work with the AFS kaserver #KerberosTgtPassing yes