diff options
| author | Daniel Baumann <daniel.baumann@progress-linux.org> | 2024-10-11 10:27:00 +0000 |
|---|---|---|
| committer | Daniel Baumann <daniel.baumann@progress-linux.org> | 2024-10-11 10:27:00 +0000 |
| commit | 65aa53fc52ff15efe54df4147564828d535837f8 (patch) | |
| tree | 31c51dad04fdcca80e6d3043c8bd49d2f1a51f83 /docker/root/etc/templates/sshd_config | |
| parent | Initial commit. (diff) | |
| download | forgejo-debian.tar.xz forgejo-debian.zip | |
Adding upstream version 8.0.3.HEADupstream/8.0.3upstreamdebian
Signed-off-by: Daniel Baumann <daniel.baumann@progress-linux.org>
Diffstat (limited to 'docker/root/etc/templates/sshd_config')
| -rw-r--r-- | docker/root/etc/templates/sshd_config | 43 |
1 files changed, 43 insertions, 0 deletions
diff --git a/docker/root/etc/templates/sshd_config b/docker/root/etc/templates/sshd_config new file mode 100644 index 00000000..033c4346 --- /dev/null +++ b/docker/root/etc/templates/sshd_config @@ -0,0 +1,43 @@ +Port ${SSH_LISTEN_PORT} +Protocol 2 + +AddressFamily any +ListenAddress 0.0.0.0 +ListenAddress :: + +${SSH_MAX_STARTUPS} +${SSH_MAX_SESSIONS} + +LogLevel ${SSH_LOG_LEVEL} + +HostKey /data/ssh/ssh_host_ed25519_key +${SSH_ED25519_CERT} +HostKey /data/ssh/ssh_host_rsa_key +${SSH_RSA_CERT} +HostKey /data/ssh/ssh_host_ecdsa_key +${SSH_ECDSA_CERT} + +AuthorizedKeysFile .ssh/authorized_keys +AuthorizedPrincipalsFile .ssh/authorized_principals +TrustedUserCAKeys /data/git/.ssh/gitea-trusted-user-ca-keys.pem +CASignatureAlgorithms ecdsa-sha2-nistp256,ecdsa-sha2-nistp384,ecdsa-sha2-nistp521,sk-ecdsa-sha2-nistp256@openssh.com,ssh-ed25519,sk-ssh-ed25519@openssh.com,rsa-sha2-512,rsa-sha2-256,ssh-rsa + +UseDNS no +AllowAgentForwarding no +AllowTcpForwarding no +PrintMotd no + +PermitUserEnvironment yes +PermitRootLogin no +ChallengeResponseAuthentication no +PasswordAuthentication no +PermitEmptyPasswords no + +AllowUsers ${USER} + +Banner none +Subsystem sftp /usr/lib/ssh/sftp-server + +AcceptEnv GIT_PROTOCOL + +${SSH_INCLUDE_FILE} |