servers/roles/debian/files/sshd_config.mgmt

15 lines
347 B
Plaintext
Raw Normal View History

# This is for sshd in management VRF, for ansible and other not-really-OOB stuff.
PidFile none
UsePAM no
2023-11-18 18:32:17 +00:00
Subsystem sftp /usr/lib/openssh/sftp-server
# Only allow pubkey auth.
KbdInteractiveAuthentication no
PasswordAuthentication no
PermitRootLogin prohibit-password
# Disable what we can.
AllowTcpForwarding no
GatewayPorts no
X11Forwarding no