From cfa21559e10253d118366970e85e0afd00321569 Mon Sep 17 00:00:00 2001 From: Darren 'Tadgy' Austin Date: Thu, 11 Sep 2025 16:22:56 +0000 Subject: [PATCH] Add ssh configuration. --- .gitattributesdb | 60 +++++++++++++++++++++++++++++++++++++++++---- etc/ssh/.gitignore | 2 ++ etc/ssh/ssh_config | 7 ++++++ etc/ssh/sshd_config | 12 +++++++++ 4 files changed, 76 insertions(+), 5 deletions(-) create mode 100644 etc/ssh/.gitignore create mode 100644 etc/ssh/ssh_config create mode 100644 etc/ssh/sshd_config diff --git a/.gitattributesdb b/.gitattributesdb index 578b4c6..64ebbd6 100644 --- a/.gitattributesdb +++ b/.gitattributesdb @@ -1,8 +1,58 @@ # This is the gitattributesdb database file. # Do not manually edit this file - any changes will be overwritten. -LmdpdGhvb2tzL2dpdGF0dHJpYnV0ZXNkYg== 1757515019.432797732 1757515018.466836488 tadgy:users 0755 - - -LmdpdGhvb2tzL3Bvc3QtY2hlY2tvdXQ= 1757515119.301790744 1757518971.601674656 tadgy:users 0755 - - -LmdpdGhvb2tzL3Bvc3QtbWVyZ2U= 1757515166.485897550 1757519006.155289401 tadgy:users 0755 - - -LmdpdGhvb2tzL3ByZS1jb21taXQ= 1757515181.005315169 1757519006.155289401 tadgy:users 0755 - - -LmdpdG1vZHVsZXM= 1757515019.436797572 1757519006.155289401 tadgy:users 0644 - - +LmdpdGhvb2tzL2dpdGF0dHJpYnV0ZXNkYg== - - +LmdpdGhvb2tzL3Bvc3QtY2hlY2tvdXQ= - - +LmdpdGhvb2tzL3Bvc3QtbWVyZ2U= - - +LmdpdGhvb2tzL3ByZS1jb21taXQ= - - +LmdpdGlnbm9yZQ== - - +LmdpdG1vZHVsZXM= - - +ZXRjLy5naXRpZ25vcmU= - - +ZXRjL2NvbmYuZC8uZ2l0aWdub3Jl - - +ZXRjL2NvbmYuZC9ib290bWlzYw== - - +ZXRjL2NvbmYuZC9ub2RlLWV4cG9ydGVy - - +ZXRjL2NvbmYuZC9zYW1iYQ== - - +ZXRjL2NvbmYuZC9zc2hk - - +ZXRjL2NvbmYuZC90ZXJyYWZvcm0taHR0cC1iYWNrZW5k - - +ZXRjL2Nyb250YWJzL3Jvb3Q= - - +ZXRjL2dyb3Vw - - +ZXRjL2hvc3RuYW1l - - +ZXRjL2hvc3Rz - - +ZXRjL2xvY2FsLmQvLmdpdGlnbm9yZQ== - - +ZXRjL2xvY2FsLmQvdGVycmFmb3JtLWh0dHAtYmFja2VuZC5zdGFydA== - - +ZXRjL25ldHdvcmsvLmdpdGlnbm9yZQ== - - +ZXRjL25ldHdvcmsvaW50ZXJmYWNlcw== - - +ZXRjL3Bhc3N3ZA== - - +ZXRjL3BlcmlvZGljL2RhaWx5L2Nyb25qb2ItZGVoeWRyYXRlZA== - - +ZXRjL3BlcmlvZGljL2RhaWx5L2Nyb25qb2ItdXBkYXRlLXBhY2thZ2VzLWxpc3Q= - - +ZXRjL3BlcmlvZGljL2RhaWx5L2Nyb25qb2Itd2Fybi1naXQtc3RhdHVz - - +ZXRjL3Jlc29sdi5jb25m - - +ZXRjL3J1bmxldmVscy9ib290Ly5naXRpZ25vcmU= - - +ZXRjL3J1bmxldmVscy9ib290L3JzeXNsb2c= - - +ZXRjL3J1bmxldmVscy9kZWZhdWx0Ly5naXRpZ25vcmU= - - +ZXRjL3J1bmxldmVscy9kZWZhdWx0L2FwYWNoZTI= - - +ZXRjL3J1bmxldmVscy9kZWZhdWx0L25vZGUtZXhwb3J0ZXI= - - +ZXRjL3J1bmxldmVscy9kZWZhdWx0L3BocC1mcG04Mw== - - +ZXRjL3J1bmxldmVscy9kZWZhdWx0L3NhbWJh - - +ZXRjL3J1bmxldmVscy9kZWZhdWx0L3NzaGQ= - - +ZXRjL3J1bmxldmVscy9zaHV0ZG93bi9zYW1iYQ== - - +ZXRjL3NoYWRvdy5ncGc= - - +ZXRjL3NzaC8uZ2l0aWdub3Jl - - +ZXRjL3NzaC9zc2hfY29uZmln - - +ZXRjL3NzaC9zc2hkX2NvbmZpZw== - - +ZXRjL3N1ZG9lcnMuZC9kZWZhdWx0cw== - - +ZXRjL3N1ZG9lcnMuZC9yb290LWFjY2Vzcw== - - +b3B0L3NiaW4vY3JvbmpvYi1kZWh5ZHJhdGVk - - +b3B0L3NiaW4vY3JvbmpvYi11cGRhdGUtcGFja2FnZXMtbGlzdA== - - +b3B0L3NiaW4vY3JvbmpvYi13YXJuLWdpdC1zdGF0dXM= - - +b3B0L3NiaW4vZGVoeWRyYXRlZA== - - +b3B0L3NiaW4vdGVycmFmb3JtLWh0dHAtYmFja2VuZA== - - +cm9vdC8uYmFzaF9sb2dvdXQ= - - +cm9vdC8uYmFzaF9wcm9maWxl - - +cm9vdC8uYmFzaHJj - - +cm9vdC8uZ2l0Y29uZmln - - +cm9vdC8uZ2l0aWdub3Jl - - +cm9vdC8ubG9jYWwvc2hhcmUvbmFuby8uZ2l0aWdub3Jl - - +cm9vdC8ubmFub3Jj - - +cm9vdC8uc3NoLy5naXRpZ25vcmU= - - +cm9vdC8uc3NoL2F1dGhvcml6ZWRfa2V5cw== - - diff --git a/etc/ssh/.gitignore b/etc/ssh/.gitignore new file mode 100644 index 0000000..f58472d --- /dev/null +++ b/etc/ssh/.gitignore @@ -0,0 +1,2 @@ +/moduli +/ssh_host_*_key* diff --git a/etc/ssh/ssh_config b/etc/ssh/ssh_config new file mode 100644 index 0000000..fd5e900 --- /dev/null +++ b/etc/ssh/ssh_config @@ -0,0 +1,7 @@ +Include /etc/ssh/ssh_config.d/*.conf + +Host * + ControlPath ~/.ssh/%u@%l->%r@%h:%p + SendEnv LANG LC_* + VerifyHostKeyDNS yes + VisualHostKey yes diff --git a/etc/ssh/sshd_config b/etc/ssh/sshd_config new file mode 100644 index 0000000..cba6121 --- /dev/null +++ b/etc/ssh/sshd_config @@ -0,0 +1,12 @@ +Include /etc/ssh/sshd_config.d/*.conf + +Port 25422 + +AcceptEnv LANG LC_* +LoginGraceTime 30 +MaxStartups 5 +PermitRootLogin prohibit-password +StreamLocalBindUnlink yes +Subsystem sftp internal-sftp +UsePAM yes +X11Forwarding no