From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from [69.77.167.62] (helo=lists.gentoo.org) by finch.gentoo.org with esmtp (Exim 4.60) (envelope-from ) id 1KnqX9-0006TF-SZ for garchives@archives.gentoo.org; Thu, 09 Oct 2008 08:06:08 +0000 Received: from pigeon.gentoo.org (localhost [127.0.0.1]) by pigeon.gentoo.org (Postfix) with SMTP id D1D95E0579; Thu, 9 Oct 2008 08:06:04 +0000 (UTC) Received: from correo13.acens.net (correo13.acens.net [217.116.0.60]) by pigeon.gentoo.org (Postfix) with ESMTP id 648D4E0579 for ; Thu, 9 Oct 2008 08:06:04 +0000 (UTC) Received: (qmail 11270 invoked from network); 9 Oct 2008 08:06:02 -0000 Received: from unknown (HELO [192.168.0.51]) (rams.englobe-tec.com@[83.38.234.130]) (envelope-sender ) by correo13.acens.net (qmail-ldap-1.03) with SMTP for ; 9 Oct 2008 08:06:02 -0000 Message-ID: <48EDBB69.8010807@englobe-tec.com> Date: Thu, 09 Oct 2008 10:06:01 +0200 From: David Rioja User-Agent: Thunderbird 2.0.0.17 (X11/20080925) Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-user@lists.gentoo.org Reply-to: gentoo-user@lists.gentoo.org MIME-Version: 1.0 To: gentoo-user@lists.gentoo.org Subject: [gentoo-user] ssh configuration guide Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit X-Archives-Salt: 25401fba-4176-4fab-90cb-3748f3f542ac X-Archives-Hash: 62d3e797d73d9c2dd2b8f19bd21a3891 This is my very first post to the list, so hello you all :) I've been editing /etc/ssh/sshd_config in order to configure SSH as told in the guide at gentoo.org. The options you have to set for a quick start configuration are: Port 22 Protocol 2 ServerKeyBits 2048 SyslogFacility AUTH LogLevel INFO LoginGraceTime 60 PermitRootLogin no RSAAuthentication no PubkeyAuthentication yes PasswordAuthentication no PermitEmptyPasswords no PAMAuthenticationViaKbdInt no Compression yes KeepAlive yes ClientAliveInterval 30 ClientAliveCountMax 4 I have encountered two issues in that: 1.- When restarting the sshd service you are told PMAAuthenticationViaKbdInt is deprecated. 2.- KeepAlive is not commented in the default configuration file, there is TCPKeepAlive instead. I suppose same options are the same. Could anyone confim that? Thanks!