Linux SSH2 Client/Server
The option “PermitRootLogin” specifies whether root can log in using ssh. Never say, “yes” to this
option.
AllowedAuthentications publickey,password
The option “AllowedAuthentications” specifies which authentication methods are allowed to be used. With this option the administrator can force users to complete several authentications before they are considered authenticated.
RequiredAuthentications publickey.password
The option “RequiredAuthentications” related to “AllowedAuthentications”, specifies which authentication methods the users must complete before continuing. This parameter must be the same as for the “AllowedAuthentications” option or the server will denies connection every time.
VerboseMode no
The option “VerboseMode” instructs the ssh2 daemon to print debugging messages about its
progress. This option is helpful in debugging connection, authentication, and configuration
problems.
PrintMotd yes
The option “PrintMotd” specifies whether the ssh2 daemon should print the content of the 7etc/motd” file when a user logs in interactively. The 7etc/motd” file is also know as “the message of the day”.
CheckMail yes
The option “CheckMail” specifies whether the ssh2 daemon should print information about new
mail you may have.
UserConfigDirectory “%D/.ssh2″
The option “UserConfigDirectory” specifies the default location for user-specific configuration
data.
SyslogFacility DAEMON
The option “SyslogFacility” specifies the facility code used when logging messages from the ssh2
daemon. The facility specifies the subsystem that produced the message, in our case DAEMON.
Ssh 1 Compatibility no
The option “Ssh1 Compatibility” specifies whether or not to use SSH1 compatibility code with
SSH2 for ssh1 users.
NoDelay yes
The option “NoDelay” specifies if the socket option TCP_NODELAY should be enabled. It is
recommended that you set this option to “yes” to improve network performance.
KeepAlive yes
The option “KeepAlive” specifies whether the system should send keep alive messages to the remote server. If set to “yes” then the death of the connection or crash of remote machines will be properly noticed.