To configure an sshd server with YaST run YaST and choose
. Then proceed as follows:Select the ports sshd should listen on in the
table. The default port number is 22. Multiple ports are allowed. To add a new port, click , enter the port number and click . To delete port, select it in the table, click and confirm.Select the features the sshd daemon should support. To disable TCP forwarding, uncheck Section 36.7, X, Authentication, and Forwarding Mechanisms for more information about TCP forwarding.
. Disabling TCP forwarding does not improve security unless users are also denied shell access, as they can always install their own forwarders. SeeTo disable X forwarding, uncheck Section 36.7, X, Authentication, and Forwarding Mechanisms for more information about X forwarding.
. If this option is disabled, any X11 forward requests by the client will return an error. However users can always install their own forwarders. SeeIn
determine, whether the connection between the server and clients should be compressed. After setting these options, click .In /etc/motd when a user logs in interactively. If you want to disable connection of a user root, uncheck .
determine, whether sshd should print message fromIn
enter the maximum allowed number of authentication attempts per connection. specifies whether password authentication is allowed. specifies whether pure RSA authentication is allowed. This option applies to SSH protocol version 1 only. specifies whether public key authentication is allowed. This option applies to protocol version 2 only.Click
to save the configuration.