Změna portu, zakazané přihlašování roota, přihlašování jenom klíčem

 

Port 9000 Protocol 2 HostKey /etc/ssh/ssh_host_rsa_key HostKey /etc/ssh/ssh_host_dsa_key HostKey /etc/ssh/ssh_host_ecdsa_key HostKey /etc/ssh/ssh_host_ed25519_key UsePrivilegeSeparation yes KeyRegenerationInterval 3600 ServerKeyBits 1024 SyslogFacility AUTH LogLevel INFO LoginGraceTime 120 PermitRootLogin no StrictModes yes

RSAAuthentication yes
 PubkeyAuthentication yes
 IgnoreRhosts yes

RhostsRSAAuthentication no

HostbasedAuthentication no
 PermitEmptyPasswords no

ChallengeResponseAuthentication no
 PasswordAuthentication no

X11Forwarding yes
 X11DisplayOffset 10
 PrintMotd no
 PrintLastLog yes
 TCPKeepAlive yes
 AcceptEnv LANG LC_*

Subsystem sftp /usr/lib/openssh/sftp-server

UsePAM yes

UseDNS no