# Don't allow empty passwords (default).
PermitEmptyPasswords no
-# Allow root-login only with public keys.
-PermitRootLogin without-password
+# Allow root-login only with public keys (default).
+PermitRootLogin prohibit-password
# Be strict when checking user file permissions (default).
StrictModes yes
# peer".
MaxSessions 30
-# Don't accept any environment variables from the client (default).
-AcceptEnv
# Don't use ~/.ssh/environment and environment= options in
# ~/.ssh/authorized_keys because LD_PRELOAD could be used to circumvent
# authentications (default).