Ssh disconnects on its own accord even with keepalive. I disable all
methods of authentication except for public keys. You'll have to
create a pub/private pair and copy the public key to
$HOME/.ssh/authorized_keys. I'm on my blackberry so I can't type out
full directions but gentoo has docs.
On 10/10/08, David Rioja <email@example.com> wrote:
> Andrey Falko escribió:
>> On Thu, Oct 9, 2008 at 1:06 AM, David Rioja <firstname.lastname@example.org> wrote:
>>> This is my very first post to the list, so hello you all
>>> I've been editing /etc/ssh/sshd_config in order to configure SSH as told
>>> the guide at gentoo.org. The options you have to set for a quick start
>>> configuration are:
>>> Port 22
>>> Protocol 2
>>> ServerKeyBits 2048
>>> SyslogFacility AUTH
>>> LogLevel INFO
>>> LoginGraceTime 60
>>> PermitRootLogin no
>>> RSAAuthentication no
>>> PubkeyAuthentication yes
>>> PasswordAuthentication no
>>> PermitEmptyPasswords no
>>> PAMAuthenticationViaKbdInt no
>>> Compression yes
>>> KeepAlive yes
>>> ClientAliveInterval 30
>>> ClientAliveCountMax 4
>>> I have encountered two issues in that:
>>> 1.- When restarting the sshd service you are told
>>> is deprecated.
>>> 2.- KeepAlive is not commented in the default configuration file, there
>>> TCPKeepAlive instead. I suppose same options are the same. Could anyone
>>> confim that?
>> If you want are truely quick start configuration, you should use the
>> defaults that get installed after you install ssh. Basically, thost
>> default will give you a working ssh that is secure and that is more
>> than likely to work out of box.
>> I'm not sure which Gentoo quickstart guide you are following, but it
>> is an out of date guide. I recommend emerge -1 openssh, then running
>> etc-update and applying the default configuration. Your goal is to get
>> a basic working ssh daemon, right?
> Yes, I wanted only make it work over the lan. Default options seemed not
> to work when I tried, perhaps I forgot to start the service... who
> knows? :-/
> By the way, besides unabling ssh access for root, I is not a good idea
> enabling KeepAlive? So won't be great problems if anyone go away leaving
> his session active. Am I mistaken?