diff options
author | Guilhem Moulin <guilhem@fripost.org> | 2020-05-17 06:44:37 +0200 |
---|---|---|
committer | Guilhem Moulin <guilhem@fripost.org> | 2020-05-17 06:44:37 +0200 |
commit | 07c280e03841712050bf726e8eab6d11fbe2a047 (patch) | |
tree | de55121016a85eb4484c78764acf6253665134c6 /src/fripost-postinst-udeb/sshd_config | |
parent | 6319474a1659008174c0939d405202e495a8ede7 (diff) |
Diffstat (limited to 'src/fripost-postinst-udeb/sshd_config')
-rw-r--r-- | src/fripost-postinst-udeb/sshd_config | 16 |
1 files changed, 4 insertions, 12 deletions
diff --git a/src/fripost-postinst-udeb/sshd_config b/src/fripost-postinst-udeb/sshd_config index 19a9b9a..6b1cfe9 100644 --- a/src/fripost-postinst-udeb/sshd_config +++ b/src/fripost-postinst-udeb/sshd_config @@ -3,22 +3,16 @@ Port 22 # Use these options to restrict which interfaces/protocols sshd will bind to #ListenAddress :: #ListenAddress 0.0.0.0 -Protocol 2 # HostKeys for protocol version 2 HostKey /etc/ssh/ssh_host_rsa_key -#Privilege Separation is turned on for security -UsePrivilegeSeparation sandbox - -# Logging -SyslogFacility AUTH -LogLevel INFO # Authentication: -LoginGraceTime 120 PermitRootLogin no AllowGroups ssh-login StrictModes yes +# Change to no to disable tunnelled clear text passwords +PasswordAuthentication no PubkeyAuthentication yes #AuthorizedKeysFile %h/.ssh/authorized_keys @@ -26,13 +20,11 @@ PubkeyAuthentication yes # some PAM modules and threads) ChallengeResponseAuthentication no -# Change to no to disable tunnelled clear text passwords -PasswordAuthentication no +UsePAM yes +AllowAgentForwarding no X11Forwarding no PrintMotd no -PrintLastLog yes -TCPKeepAlive yes # Allow client to pass locale environment variables AcceptEnv LANG LC_* |