1# This is ssh server systemwide configuration file. 2 3Port 22 4ListenAddress 0.0.0.0 5HostKey /etc/ssh_host_key 6RandomSeed /etc/ssh_random_seed 7ServerKeyBits 768 8LoginGraceTime 600 9KeyRegenerationInterval 3600 10PermitRootLogin yes 11# 12# Don't read ~/.rhosts and ~/.shosts files 13IgnoreRhosts yes 14StrictModes yes 15QuietMode no 16X11Forwarding yes 17FascistLogging no 18PrintMotd yes 19KeepAlive yes 20SyslogFacility DAEMON 21RhostsAuthentication no 22# 23# For this to work you will also need host keys in /etc/ssh_known_hosts 24RhostsRSAAuthentication yes 25# 26# Changed RSAAuthentication to no/bg 27RSAAuthentication no 28# 29# To enable tunneled clear text passwords, change to yes here! 30PasswordAuthentication no 31PermitEmptyPasswords no 32#KerberosOrLocalPasswd yes 33 34# Kerberos TGT Passing does only work with the AFS kaserver 35#KerberosTgtPassing yes 36 37# AllowHosts *.our.com friend.other.com 38# DenyHosts lowsecurity.theirs.com *.evil.org evil.org 39