- Merged changes from OpenBSD CVS - [sshd.c] session_key_int may be zero - [auth-rh-rsa.c servconf.c servconf.h ssh.h sshd.8 sshd.c sshd_config] IgnoreUserKnownHosts(default=no), used for RhostRSAAuth, ok deraadt,millert - Brought default sshd_config more in line with OpenBSDs

commit: 322650927bec37d850a3ab72f82bda1cd49b09e4 [log] [tgz]
author: Damien Miller <djm@mindrot.org> Fri Nov 12 11:33:04 1999 +1100
committer: Damien Miller <djm@mindrot.org> Fri Nov 12 11:33:04 1999 +1100
tree: cb0bd087fb2f709f4d070221479249d8102e14bf
parent: 776af5de4f7f2aa938cdd17bf85a9c891ce7dbd9 [diff] [blame]
diff --git a/sshd_config b/sshd_config
index 42c3244..791fd13 100644
--- a/sshd_config
+++ b/sshd_config

@@ -11,13 +11,13 @@
 #
 # Loglevel replaces QuietMode and FascistLogging
 #
+SyslogFacility AUTH
 LogLevel INFO
 
 #
 # Don't read ~/.rhosts and ~/.shosts files
-IgnoreRhosts yes
 StrictModes yes
-X11Forwarding yes
+X11Forwarding no
 X11DisplayOffset 10
 FascistLogging no
 PrintMotd yes
@@ -32,6 +32,16 @@
 #
 RhostsRSAAuthentication no
 
+#
+# Don't read ~/.rhosts and ~/.shosts files
+#
+IgnoreRhosts yes
+
+#
+# Uncomment if you don't trust ~/.ssh/known_hosts for RhostsRSAAuthentication
+#
+#IgnoreUserKnownHosts yes
+
 RSAAuthentication yes
 
 # To disable tunneled clear text passwords, change to no here!
commit	322650927bec37d850a3ab72f82bda1cd49b09e4	[log] [tgz]
author	Damien Miller <djm@mindrot.org>	Fri Nov 12 11:33:04 1999 +1100
committer	Damien Miller <djm@mindrot.org>	Fri Nov 12 11:33:04 1999 +1100
tree	cb0bd087fb2f709f4d070221479249d8102e14bf
parent	776af5de4f7f2aa938cdd17bf85a9c891ce7dbd9 [diff] [blame]