| HostKey /data/ssh/ssh_host_ed25519_key |
| |
| LogLevel ERROR |
| |
| # Zero or more authorized_keys files may be present under different scenarios: |
| # /data - authorized_keys are typically read from here when running on hardware, copied into minfs |
| # during the paving process. |
| # /boot - authorized_keys should only present be in bootfs when running Fuchsia in an emulator. |
| # authorized_keys_for_test_infra - This file is not expected to be present on any standard build, |
| # only on builds produced for automated testing. See go/fuchsia-ssh-for-testing. |
| # |
| # These are combined since the sshd will only use the first AuthorizedKeysFile line. |
| AuthorizedKeysFile /data/ssh/authorized_keys /boot/data/ssh/authorized_keys /config/data/authorized_keys_for_test_infra |
| |
| # We disallow password authentication completely (it's unsupported irrespective of this |
| # configuration), so all auth is key-based. Bump the MaxAuthTries limit to accommodate users with |
| # many keys added to their SSH agent. |
| PasswordAuthentication no |
| MaxAuthTries 20 |
| |
| Protocol 2 |
| TCPKeepAlive yes |
| ClientAliveInterval 1 |
| ClientAliveCountMax 10 |
| |
| Subsystem sftp /pkg/bin/sftp-server |
| Subsystem sl4f /pkg/bin/sl4f-server |