HP-UX Secure Shell Getting Started Guide
internal-sftp implements an in-process sftp server. This may simplify configurations using
the ChrootDirectory directive to force a different file system root on clients. By default no
subsystems are defined.
NOTE: The subsystem directive applies to SSH protocol version-2 only.
SyslogFacility
Use this directive to specify the facility code to be used when logging messages from the sshd
daemon.
The default setting is AUTH.
Table A-2 lists the valid values for the SyslogFacility directive.
Table A-2 SyslogFacility Values
DescriptionValue
Directs syslog to log sshd messages based on the LOG_DAEMON log facility
specification.
DAEMON
Specifies that messages are logged based on the LOG_USER log facility
specification.
USER
Logs authentication-related messages
AUTH
Specifies that the messages are reserved for local use.
LOCAL 0-7
For example:
SyslogFacility AUTH
TCPKeepAlive
Use this directive to control the flow of TCP keep-alive messages. If keep-alive messages are
sent, the connection terminates, or one of the hosts crashes, this directive prevents infinitely
hanging sessions.
However, if keep-alive messages are not sent, sessions can hang indefinitely on the server,
resulting in ghost users and large consumption of server resources.
The default setting is YES.
For example:
TCPKeepAlive YES
UseDNS
Use this directive to specify the order in which the sshd daemon must look up the remote host
name, and to check that the resolved host name for the remote IP address maps back to the same
IP address.
The default setting is YES.
For example:
UseDNS YES
UseLogin
Use this directive to specify whether to use login for interactive login sessions. Enabling this
option automatically disables X11 forwarding, because login cannot handle xauth cookies.
NOTE: When you enable UseLogin, the PermitUserEnvironment configuration directive
is automatically disabled.
The default setting is no.
Server Configuration Directives 79