initial import

rootfs/etc/ssh/sshd_config.d/port.conf

@@ -0,0 +1 @@
+Port 22

rootfs/etc/ssh/sshd_config.d/sshd.conf

@@ -0,0 +1,31 @@
+HostKey /ssh/ssh_host_rsa_key
+HostKey /ssh/ssh_host_ecdsa_key
+HostKey /ssh/ssh_host_ed25519_key
+
+#SyslogFacility AUTH
+LogLevel INFO
+LoginGraceTime 1m
+PermitRootLogin no
+PubkeyAuthentication yes
+MaxAuthTries 3
+PrintMotd no
+PermitUserEnvironment no
+
+ClientAliveInterval 10
+ClientAliveCountMax 3
+
+UseDNS no
+  
+AuthorizedKeysFile      /ssh/authorized_keys
+PasswordAuthentication no
+
+AllowAgentForwarding no
+AllowTcpForwarding no
+GatewayPorts no
+X11Forwarding no
+
+Subsystem       sftp    internal-sftp
+
+# ChrootDirectory /data
+
+ForceCommand /app/restricted-ssh ${SSH_ORIGINAL_COMMAND}