Reorganization.

Move preseed-related stuff in ./preseed/, and vm-related stuff in ./virtualenv/.
author: Guilhem Moulin <guilhem@fripost.org> 2013-10-28 19:50:41 +0100
committer: Guilhem Moulin <guilhem@fripost.org> 2015-06-07 04:27:43 +0200
commit: e596091daf51443248a0cb427832be62552eaf27 (patch)
tree: 947c9dbe584746aa8a20d0f39a42ad0703bc5e6a /src/fripost-postinst-udeb/sshd_config
parent: ea9414878e7613f33b7808feb390d3dd49aefb6c (diff)
1 files changed, 40 insertions, 0 deletions
diff --git a/src/fripost-postinst-udeb/sshd_config b/src/fripost-postinst-udeb/sshd_config
new file mode 100644
index 0000000..e81b272
--- /dev/null
+++ b/src/fripost-postinst-udeb/sshd_config
@@ -0,0 +1,40 @@
+# What ports, IPs and protocols we listen for
+Port 22
+# Use these options to restrict which interfaces/protocols sshd will bind to
+#ListenAddress ::
+#ListenAddress 0.0.0.0
+Protocol 2
+# HostKeys for protocol version 2
+HostKey /etc/ssh/ssh_host_rsa_key
+#Privilege Separation is turned on for security
+UsePrivilegeSeparation yes
+
+# Logging
+SyslogFacility AUTH
+LogLevel INFO
+
+# Authentication:
+LoginGraceTime 120
+PermitRootLogin no
+AllowGroups ssh
+StrictModes yes
+
+PubkeyAuthentication yes
+#AuthorizedKeysFile %h/.ssh/authorized_keys
+
+# Change to yes to enable challenge-response passwords (beware issues with
+# some PAM modules and threads)
+ChallengeResponseAuthentication no
+
+# Change to no to disable tunnelled clear text passwords
+PasswordAuthentication no
+
+X11Forwarding no
+PrintMotd no
+PrintLastLog yes
+TCPKeepAlive yes
+
+# Allow client to pass locale environment variables
+AcceptEnv LANG LC_*
+
+Subsystem sftp /usr/lib/openssh/sftp-server
author	Guilhem Moulin <guilhem@fripost.org>	2013-10-28 19:50:41 +0100
committer	Guilhem Moulin <guilhem@fripost.org>	2015-06-07 04:27:43 +0200
commit	e596091daf51443248a0cb427832be62552eaf27 (patch)
tree	947c9dbe584746aa8a20d0f39a42ad0703bc5e6a /src/fripost-postinst-udeb/sshd_config
parent	ea9414878e7613f33b7808feb390d3dd49aefb6c (diff)