sshd_config

Mike bmike101 at cox.net
Sat Feb 18 05:39:48 MST 2006 

I'm not sure what happened. I was mucking around with sshd_config -2- and now 
when i try to load a root konqueror it tells me 'file not supported'. I set 
everything back as it was originaly but it still does it. Please look at my 
sshd_config and see if anything is wrong.

I was looking through the config file and see:

	RhostsAuthentication no
	#
	# For this to work you will also need host keys in /etc/ssh/ssh_known_hosts
	RhostsRSAAuthentication no

Would it mess things up or be useless to set this to on and put 'cox.com/net 
into known hosts?

On another matter: to get around the sshd_config problem I attempted to save a 
file (that needed superuser priveledges) manually (using mount and cp and 
those kinds of things).... never mind. Figured out what the problem was with 
that.


-2-
#       $OpenBSD: sshd_config,v 1.38 2001/04/15 21:41:29 deraadt Exp $

# This sshd was compiled with PATH=/bin:/usr/bin:/usr/local/bin:/usr/X11R6/bin

# This is the sshd server system-wide configuration file.  See sshd(8)
# for more information.

Port 1076
#Protocol 2,1
#ListenAddress 0.0.0.0
#ListenAddress ::
AllowUsers bmike1 bmike101
HostKey /etc/ssh/ssh_host_key
HostKey /etc/ssh/ssh_host_rsa_key
HostKey /etc/ssh/ssh_host_dsa_key
ServerKeyBits 768
LoginGraceTime 600
KeyRegenerationInterval 3600
PermitRootLogin no
#
# Don't read ~/.rhosts and ~/.shosts files
IgnoreRhosts yes
# Uncomment if you don't trust ~/.ssh/known_hosts for RhostsRSAAuthentication
#IgnoreUserKnownHosts yes
StrictModes yes
X11Forwarding yes
X11DisplayOffset 10
PrintMotd no
PrintLastLog no
KeepAlive yes

# Logging
SyslogFacility AUTH
LogLevel INFO
#obsoletes QuietMode and FascistLogging

RhostsAuthentication no
#
# For this to work you will also need host keys in /etc/ssh/ssh_known_hosts
RhostsRSAAuthentication no
# similar for protocol version 2
HostbasedAuthentication no
#
RSAAuthentication yes

# To disable tunneled clear text passwords, change to no here!
PasswordAuthentication yes
PermitEmptyPasswords no

# Uncomment to disable s/key passwords
#ChallengeResponseAuthentication no

# Uncomment to enable PAM keyboard-interactive authentication
# Warning: enabling this may bypass the setting of 'PasswordAuthentication'

#PAMAuthenticationViaKbdInt yes

# To change Kerberos options
# NB: Debian's ssh ships without Kerberos Support
#KerberosAuthentication no
#KerberosOrLocalPasswd yes
#AFSTokenPassing no
#KerberosTicketCleanup no

# Kerberos TGT Passing does only work with the AFS kaserver
#KerberosTgtPassing yes

#CheckMail yes
#UseLogin no

#MaxStartups 10:30:60
#Banner /etc/issue.net
#ReverseMappingCheck yes

Subsystem       sftp    /usr/lib/sftp-server
-------------- next part --------------
An embedded message was scrubbed...
From: Gerard Snitselaar <snits at snitselaar.org>
Subject: Re: how to tell when you have a hacker?
Date: Fri, 17 Feb 2006 23:05:24 -0700
Size: 5287
Url: http://lists.plug.phoenix.az.us/pipermail/plug-discuss/attachments/20060218/074395d6/attachment.eml

More information about the PLUG-discuss mailing list