-
Notifications
You must be signed in to change notification settings - Fork 1
Expand file tree
/
Copy pathsshconfig
More file actions
28 lines (28 loc) · 1.41 KB
/
sshconfig
File metadata and controls
28 lines (28 loc) · 1.41 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
Host *
#User <username>
# now we have aladdin with confirmation: ssh-add -c -s /usr/lib/opensc-pkcs11.so
# it's (relatively) safe to forward ssh-agent socket to remote parties
ForwardAgent yes
#PKCS11Provider /usr/lib/opensc-pkcs11.so
# from http://sysadvent.blogspot.com/2013/12/day-17-stupid-ssh-tricks.html
ServerAliveInterval 60
ServerAliveCountMax 10
TCPKeepAlive no
ControlMaster auto
ControlPath ~/.ssh/mux-%r@%h:%p
ControlPersist 4h
# visible hostnames in .ssh/known_hosts
HashKnownHosts no
# https://atom.io/packages/remote-atom
RemoteForward 52698 localhost:52698
# don't obfuscate .ssh/known_hosts
HashKnownHosts no
# http://www.openssh.com/txt/release-7.1p2
UseRoaming no
# Sane security defaults for SSH clients. Disables everything old and nasty.
# Explanation: http://mochtu.de/2015/01/06/securing-ssh-connections/
# Background information: https://stribika.github.io/2015/01/04/secure-secure-shell.html
# OSX Users: consider updating your openssh version, or you might see an error.
KexAlgorithms curve25519-sha256@libssh.org,diffie-hellman-group-exchange-sha256
Ciphers chacha20-poly1305@openssh.com,aes256-ctr,aes192-ctr,aes128-ctr
MACs hmac-sha2-512-etm@openssh.com,hmac-sha2-256-etm@openssh.com,hmac-ripemd160-etm@openssh.com,umac-128-etm@openssh.com,hmac-sha2-512,hmac-sha2-256,hmac-ripemd160,umac-128@openssh.com