summaryrefslogtreecommitdiff
path: root/public/fs/etc/ssh/sshd_config.in
blob: ac7684ad87619843dd1ed1c0ce9176b9414c6da7 (plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
Port                            @ssh_port@
AddressFamily                   any
ListenAddress                   0.0.0.0
ListenAddress                   ::

HostKey                         /etc/ssh/ssh_host_ed25519_key
HostKey                         /etc/ssh/ssh_host_rsa_key

SyslogFacility                  AUTH
LogLevel                        VERBOSE

LoginGraceTime                  2m
StrictModes                     yes
MaxAuthTries                    6
MaxSessions                     256

UsePAM                          yes
PubkeyAuthentication            yes
PermitRootLogin                 without-password

PasswordAuthentication          no
PermitEmptyPasswords            no
ChallengeResponseAuthentication no

AuthorizedKeysFile	        .ssh/authorized_keys
AuthorizedPrincipalsFile        none

AuthorizedKeysCommand           none
AuthorizedKeysCommandUser       nobody


AllowTcpForwarding              yes
AllowAgentForwarding            no
GatewayPorts                    no
X11Forwarding                   no

Subsystem sftp                  /usr/lib/ssh/sftp-server

AcceptEnv                       LANG LC_CTYPE LC_NUMERIC LC_TIME LC_COLLATE LC_MONETARY LC_MESSAGES
AcceptEnv                       LC_PAPER LC_NAME LC_ADDRESS LC_TELEPHONE LC_MEASUREMENT
AcceptEnv                       LC_IDENTIFICATION LC_ALL


# pagure
Match User git
    AuthorizedKeysCommand /usr/lib/pagure/keyhelper.py "%u" "%h" "%t" "%f"
    AuthorizedKeysCommandUser git