diff options
| author | Damien Miller <djm@cvs.openbsd.org> | 2007-03-19 01:01:30 +0000 |
|---|---|---|
| committer | Damien Miller <djm@cvs.openbsd.org> | 2007-03-19 01:01:30 +0000 |
| commit | 7f9d71d82de2e0eb6b9b13a1562f1b5ef333d3db (patch) | |
| tree | 51ffd1fa729a351e2877de3afe2e421c040aa71b /usr.bin/ssh/sshd_config | |
| parent | 657ef9c9d70c06f172a28d3fbebd9aa9b4e541bf (diff) | |
Disable the legacy SSH protocol 1 for new installations via
a configuration override. In the future, we will change the
server's default itself so users who need the legacy protocol
will need to turn it on explicitly
Diffstat (limited to 'usr.bin/ssh/sshd_config')
| -rw-r--r-- | usr.bin/ssh/sshd_config | 8 |
1 files changed, 6 insertions, 2 deletions
diff --git a/usr.bin/ssh/sshd_config b/usr.bin/ssh/sshd_config index 08be5465198..6d277b860ed 100644 --- a/usr.bin/ssh/sshd_config +++ b/usr.bin/ssh/sshd_config @@ -1,4 +1,4 @@ -# $OpenBSD: sshd_config,v 1.74 2006/07/19 13:07:10 dtucker Exp $ +# $OpenBSD: sshd_config,v 1.75 2007/03/19 01:01:29 djm Exp $ # This is the sshd server system-wide configuration file. See # sshd_config(5) for more information. @@ -9,11 +9,15 @@ # default value. #Port 22 -#Protocol 2,1 #AddressFamily any #ListenAddress 0.0.0.0 #ListenAddress :: +# Disable legacy (protocol version 1) support in the server for new +# installations. In future the default will change to require explicit +# activation of protocol 1 +Protocol 2 + # HostKey for protocol version 1 #HostKey /etc/ssh/ssh_host_key # HostKeys for protocol version 2 |