ssh命令详解

2024年2月7日发(作者：)

48#RSAAuthentication yes49#PubkeyAuthentication yes50#AuthorizedKeysFile .ssh/authorized_keys51#AuthorizedKeysCommand none52#AuthorizedKeysCommandRunAs nobody53

54# For this to work you will also need host keys in /etc/ssh/ssh_known_hosts55#RhostsRSAAuthentication no56# similar for protocol version 257#HostbasedAuthentication no58# Change to yes if you don't trust ~/.ssh/known_hosts for59# RhostsRSAAuthentication and HostbasedAuthentication60#IgnoreUserKnownHosts no61# Don't read the user's ~/.rhosts and ~/.shosts files62#IgnoreRhosts yes63

64# To disable tunneled clear text passwords, change to no here!65#PasswordAuthentication yes66#PermitEmptyPasswords no67PasswordAuthentication yes68

69# Change to no to disable s/key passwords70#ChallengeResponseAuthentication yes71ChallengeResponseAuthentication no72

73# Kerberos options74#KerberosAuthentication no75#KerberosOrLocalPasswd yes76#KerberosTicketCleanup yes77#KerberosGetAFSToken no78#KerberosUseKuserok yes79

80# GSSAPI options81#GSSAPIAuthentication no82GSSAPIAuthentication yes83#GSSAPICleanupCredentials yes84GSSAPICleanupCredentials yes85#GSSAPIStrictAcceptorCheck yes86#GSSAPIKeyExchange no87

88# Set this to 'yes' to enable PAM authentication, account processing,89# and session processing. If this is enabled, PAM authentication will90# be allowed through the ChallengeResponseAuthentication and91# PasswordAuthentication. Depending on your PAM configuration,92# PAM authentication via ChallengeResponseAuthentication may bypass93# the setting of "PermitRootLogin without-password".94# If you just want the PAM account and session checks to run without95# PAM authentication, then enable this but set PasswordAuthentication96# and ChallengeResponseAuthentication to 'no'.97#UsePAM no98UsePAM yes99

100# Accept locale-related environment variables101AcceptEnv LANG LC_CTYPE LC_NUMERIC LC_TIME LC_COLLATE LC_MONETARY LC_MESSAGES102AcceptEnv LC_PAPER LC_NAME LC_ADDRESS LC_TELEPHONE LC_MEASUREMENT103AcceptEnv LC_IDENTIFICATION LC_ALL LANGUAGE104AcceptEnv XMODIFIERS105

106#AllowAgentForwarding yes107#AllowTcpForwarding yes108#GatewayPorts no109#X11Forwarding no110X11Forwarding yes111#X11DisplayOffset 10112#X11UseLocalhost yes