tachtler:ssh
Unterschiede
Hier werden die Unterschiede zwischen zwei Versionen angezeigt.
Beide Seiten der vorigen RevisionVorhergehende ÜberarbeitungNächste Überarbeitung | Vorhergehende ÜberarbeitungLetzte ÜberarbeitungBeide Seiten der Revision | ||
tachtler:ssh [2012/08/29 11:11] – klaus | tachtler:ssh [2014/10/01 16:04] – klaus | ||
---|---|---|---|
Zeile 55: | Zeile 55: | ||
Die folgende Konfigurationsdatei des SSH-Daemons wurde auf höhere Sicherheitsbedürfnisse angepasst. | Die folgende Konfigurationsdatei des SSH-Daemons wurde auf höhere Sicherheitsbedürfnisse angepasst. | ||
<code ini> | <code ini> | ||
- | + | # | |
- | # | + | |
# This is the sshd server system-wide configuration file. See | # This is the sshd server system-wide configuration file. See | ||
Zeile 70: | Zeile 69: | ||
AcceptEnv LANG LC_CTYPE LC_NUMERIC LC_TIME LC_COLLATE LC_MONETARY LC_MESSAGES | AcceptEnv LANG LC_CTYPE LC_NUMERIC LC_TIME LC_COLLATE LC_MONETARY LC_MESSAGES | ||
AcceptEnv LC_PAPER LC_NAME LC_ADDRESS LC_TELEPHONE LC_MEASUREMENT | AcceptEnv LC_PAPER LC_NAME LC_ADDRESS LC_TELEPHONE LC_MEASUREMENT | ||
- | AcceptEnv LC_IDENTIFICATION LC_ALL | + | AcceptEnv LC_IDENTIFICATION LC_ALL |
- | AllowUsers | + | AcceptEnv XMODIFIERS |
+ | AllowUsers | ||
+ | AddressFamily inet | ||
Banner / | Banner / | ||
ChallengeResponseAuthentication no | ChallengeResponseAuthentication no | ||
- | GSSAPIAuthentication | + | GSSAPIAuthentication |
GSSAPICleanupCredentials yes | GSSAPICleanupCredentials yes | ||
- | | + | |
+ | HostKey / | ||
+ | ListenAddress 192.168.0.10: | ||
+ | ListenAddress 127.0.0.1: | ||
+ | MaxAuthTries 12 | ||
Protocol 2 | Protocol 2 | ||
Subsystem | Subsystem | ||
SyslogFacility AUTHPRIV | SyslogFacility AUTHPRIV | ||
- | UsePAM | + | UsePAM |
+ | UsePrivilegeSeparation sandbox | ||
X11Forwarding yes | X11Forwarding yes | ||
- | # Settings for " | + | # Settings for Key-Authorization |
AuthorizedKeysFile %h/ | AuthorizedKeysFile %h/ | ||
- | PasswordAuthentication no | + | PasswordAuthentication no |
- | PermitRootLogin no | + | PermitRootLogin no |
PermitEmptyPasswords no | PermitEmptyPasswords no | ||
- | RSAAuthentication no | + | RSAAuthentication no |
Zeile 293: | Zeile 298: | ||
# | # | ||
- | # HostKey | + | # HostKey |
# Specifies a file containing a private host key used by SSH. The | # Specifies a file containing a private host key used by SSH. The | ||
# default is / | # default is / | ||
Zeile 660: | Zeile 665: | ||
==== Konfiguration SSH-Client ==== | ==== Konfiguration SSH-Client ==== | ||
- | < | + | < |
- | # | + | # |
# This is the ssh client system-wide configuration file. See | # This is the ssh client system-wide configuration file. See | ||
Zeile 685: | Zeile 690: | ||
SendEnv LANG LC_CTYPE LC_NUMERIC LC_TIME LC_COLLATE LC_MONETARY LC_MESSAGES | SendEnv LANG LC_CTYPE LC_NUMERIC LC_TIME LC_COLLATE LC_MONETARY LC_MESSAGES | ||
SendEnv LC_PAPER LC_NAME LC_ADDRESS LC_TELEPHONE LC_MEASUREMENT | SendEnv LC_PAPER LC_NAME LC_ADDRESS LC_TELEPHONE LC_MEASUREMENT | ||
- | SendEnv LC_IDENTIFICATION LC_ALL | + | SendEnv LC_IDENTIFICATION LC_ALL |
+ | SendEnv XMODIFIERS | ||
# Host Restricts the following declarations (up to the next Host key- | # Host Restricts the following declarations (up to the next Host key- |
tachtler/ssh.txt · Zuletzt geändert: 2014/10/01 16:19 von klaus