# opensshd_config -- Configuration file for the OpenSSH server.
# $Id: sshd_config,v 1.3 2003/09/17 23:28:58 morpheus Exp $

Port 22
Protocol 2,1
ListenAddress 0.0.0.0

# HostKey for protocol version 1
HostKey /etc/ssh/ssh_host_key
# HostKeys for protocol version 2
HostKey /etc/ssh/ssh_host_rsa_key
HostKey /etc/ssh/ssh_host_dsa_key

# Public key and host based authentication options
RSAAuthentication yes
PubkeyAuthentication yes
RhostsAuthentication no
IgnoreRhosts yes
RhostsRSAAuthentication no
HostbasedAuthentication no

# Password and kerberos authentication options
PasswordAuthentication yes
PermitEmptyPasswords no
KerberosAuthentication yes
KerberosOrLocalPasswd yes
KerberosTicketCleanup yes
# KerberosTgtPassing no
# AFSTokenPassing yes

# X11 forwarding options
X11Forwarding yes
X11DisplayOffset 10
X11UseLocalhost yes

# KeepAlive helps keep NAT connections open
KeepAlive yes

# Ensure great security
UsePrivilegeSeparation yes

# Define the location of the sftp daemon helper
Subsystem	sftp	/usr/local/libexec/sftp-server