forked from drduh/config
-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathsshd_config
41 lines (41 loc) · 1.01 KB
/
sshd_config
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
# https://github.com/drduh/config/blob/master/sshd_config
Port 22
AddressFamily inet
ListenAddress 0.0.0.0
#ListenAddress 172.16.255.1
#ListenAddress 10.8.1.1
AllowUsers sysadm
HostKey /etc/ssh/ssh_host_key
#HostKey /etc/ssh/ssh_host_ed25519_key
Ciphers [email protected],[email protected]
MACs [email protected]
KexAlgorithms [email protected],diffie-hellman-group-exchange-sha256
RekeyLimit 256M
SyslogFacility AUTH
LogLevel VERBOSE
MaxStartups 1
MaxSessions 1
LoginGraceTime 10s
MaxAuthTries 3
ClientAliveInterval 30
ClientAliveCountMax 20
PermitRootLogin no
StrictModes yes
PubkeyAuthentication yes
AuthorizedKeysFile %h/.ssh/authorized_keys
IgnoreRhosts yes
PasswordAuthentication no
PermitEmptyPasswords no
HostbasedAuthentication no
ChallengeResponseAuthentication no
Compression delayed
AllowTcpForwarding no
X11Forwarding no
GatewayPorts no
PermitTunnel no
TCPKeepAlive yes
UseDNS no
PrintMotd no
PrintLastLog yes
PermitUserEnvironment no
#Subsystem sftp /usr/libexec/sftp-server