Basic SSH Server Configuration
- This configuration does not allow remote root login for security reasons
- Allows X display forwarding (remote X display). To disable the feature, comment out the line X11Forwarding yes or change it to X11Forwarding no.
- Allows incoming sftp (secure FTP) connections
sshd_config in /etc/ssh
# rhosts authentication should not be used
#RhostsAuthentication no
# Don't read the user's ~/.rhosts and ~/.shosts files
#IgnoreRhosts yes
# For this to work you will also need host keys in /etc/ssh/ssh_known_hosts
#RhostsRSAAuthentication no
# similar for protocol version 2
#HostbasedAuthentication no
# Change to yes if you don't trust ~/.ssh/known_hosts for
# RhostsRSAAuthentication and HostbasedAuthentication
#IgnoreUserKnownHosts no
# To disable tunneled clear text passwords, change to no here!
#PasswordAuthentication yes
#PermitEmptyPasswords no
# Change to no to disable s/key passwords
#ChallengeResponseAuthentication yes
# Kerberos options
#KerberosAuthentication no
#KerberosOrLocalPasswd yes
#KerberosTicketCleanup yes
#AFSTokenPassing no
# Kerberos TGT Passing only works with the AFS kaserver
#KerberosTgtPassing no
# Set this to 'yes' to enable PAM keyboard-interactive authentication
# Warning: enabling this may bypass the setting of 'PasswordAuthentication'
#PAMAuthenticationViaKbdInt yes
#Allow X display forwarding
X11Forwarding yes
#X11DisplayOffset 10
#X11UseLocalhost yes
#PrintMotd yes
#PrintLastLog yes
#KeepAlive yes
#UseLogin no
UsePrivilegeSeparation yes
#Compression yes
#MaxStartups 10
# no default banner path
#Banner /some/path
#VerifyReverseMapping no
# override default of no subsystems
Subsystem sftp /usr/lib/ssh/sftp-server
#Do not allow root login
PermitRootLogin no
About Me
Riezal @ Rezdrake, a survivor in a heart of KL, an average guy who work as System Security Consultant in known US firm somewhere on earth, a Husband to a beautiful wife Haizatul Aida,a guy who owns a Nexus Xenic bike,Not an athlete, just a normal guy who ride a bike to work daily ,a 7 speed rider(feel free to overtake me),an ex smoker,loves to cook,loves to ride,mountainbiking,loves to mod, Loves to DIY,Currently into down tempo tracks,jazz,grovee,security, automotive financial,palm,costan rican coffee,stocks,property,fishing
Top 50 Bike Commuting Blogs
Best Blogger Awards
Popular Posts
-
Can't Wait !!!!!! The anticipated mountain bike film is already being called the year's best and is drawing comparisons to Red ... -
Terlampau gila dan terlampau lama aku meninggalkan blog ni tanpa sebarang coretan mahu pun nukilan.. mahupun catatan idup aku. aku rasa ... -
Ride To Work - Daily Stats 10/22/2009 Route : Equinne Park - Pekan Serdang - Serdang Raya - Bukit Jalil TPM Distance : 11:65 Avg Speed : ... -
Tengahari misi kami adalah ke Bo Sang Home industries. Salah satu tempat di mana terdapat berbagai perusahaan/kilang seperti , pembuatan ku... -
Finally!!! So long suckerss... i know you have been a good buddy.. for centuries.. but i don't need you anymore.. i'm way better of ... -
Baru la rugged bila berbasikal :) Salam to all.. agak slow sedikit untuk aku kembali menulis disebabkan kerja2 luar yang semakin hari semak... -
Kecederaan yang memeritkan hati.. dunia gelap seketika. Kecederaan yang parah di Hati dan juga di poket..Valve bengkok, Rocker arm patah.... -
Aku bersyukur dan bertuah kerana hari ni pada waktu ini aku berpeluang untuk menunaikan solat jumaat di masjid hidayatul Banhaw di Chian... -
1 - Cari paip PVC drainage sebesar ini. 2 - Potong sisi sebelah.. jangan lebih potong biar melekat botol mineral water tu. 3 - Siapp D... -
Alhamdulillah syukur ke hadrat Ilahi kerana dapat juga aku menghabiskan Race di Selangor MountainBike Challenge 2010 di bukit lagong. Aku...
0 comments:
Post a Comment