summaryrefslogtreecommitdiff
path: root/sshd/borg_sshd
blob: b48901d2a3949aeb9c40761fbc5d212f2a23a186 (plain) (blame)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
# Alternate sshd for borg use only, to be run aside a normal sshd process
Port 2222
Protocol 2
SyslogFacility AUTHPRIV
PermitRootLogin no
PasswordAuthentication no
ChallengeResponseAuthentication no
GSSAPIAuthentication yes
GSSAPICleanupCredentials yes
UsePAM yes
AcceptEnv LANG LC_CTYPE LC_NUMERIC LC_TIME LC_COLLATE LC_MONETARY LC_MESSAGES
AcceptEnv LC_PAPER LC_NAME LC_ADDRESS LC_TELEPHONE LC_MEASUREMENT
AcceptEnv LC_IDENTIFICATION LC_ALL LANGUAGE
AcceptEnv XMODIFIERS
AllowAgentForwarding no
AllowTcpForwarding no
X11Forwarding no
PrintMotd no
PrintLastLog no
PermitUserEnvironment no
ClientAliveInterval 10
ClientAliveCountMax 3
UseDNS no
PidFile /var/run/sshd_backups.pid
MaxStartups 100:60:200
DenyUsers root
ForceCommand /usr/local/scripts/borg-restricted.sh