| Port 22 | |
| ListenAddress 0.0.0.0 | |
| # Authentication | |
| PermitRootLogin no | |
| PasswordAuthentication no | |
| ChallengeResponseAuthentication no | |
| UsePAM yes | |
| X11Forwarding yes | |
| PrintMotd no | |
| AcceptEnv LANG LC_* | |
| Subsystem sftp /usr/lib/openssh/sftp-server | |
| # Allow only specific user for tunneling | |
| AllowUsers tunneluser | |
| # Configure for SOCKS5 proxy | |
| GatewayPorts yes | |
| AllowTcpForwarding yes | |
| PermitTunnel no | |
| # Path to authorized_keys for tunneluser | |
| AuthorizedKeysFile /app/ssh-config/authorized_keys | |