update..
This commit is contained in:
@ -2012,6 +2012,7 @@ default_user:
|
||||
ssh_keys:
|
||||
- 'ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIO90culn3sicU2chTHn40ytcTay0nUIHap0uF/5fVM6P chris@sol'
|
||||
- 'ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIOQHMUKlDh2ufno5pZOhUY5xFljC1R5zQ/GjOHDkS58D root@sol'
|
||||
- 'ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIMvy+IDUeoVwLg+cJNcKzls5guOrVUretsf05v3Y2N+Y root@default-oopen-server'
|
||||
|
||||
- name: borg
|
||||
user_id: 1065
|
||||
@ -2108,92 +2109,7 @@ sshd_use_dns: !!str "no"
|
||||
|
||||
sshd_gateway_ports: !!str "no"
|
||||
|
||||
sshd_required_rsa_size: 4096
|
||||
|
||||
# sshd_pubkey_accepted_algorithms:
|
||||
#
|
||||
# if the specified list begins with a '+' character, then the specified
|
||||
# algorithms will be appended to the default set instead of replacing them.
|
||||
#
|
||||
# If the specified list begins with a '-' character, then the specified algorithms
|
||||
# (including wildcards) will be removed from the default set instead of replacing them.
|
||||
#
|
||||
# If the specified list begins with a '^' character, then the
|
||||
# specified algorithms will be placed at the head of the default set.
|
||||
|
||||
#sshd_pubkey_accepted_algorithms:
|
||||
# - curve25519-sha256@libssh.org
|
||||
# - diffie-hellman-group1-sha1
|
||||
# - diffie-hellman-group14-sha1
|
||||
# - diffie-hellman-group14-sha256
|
||||
# - diffie-hellman-group16-sha512
|
||||
# - diffie-hellman-group18-sha512
|
||||
# - diffie-hellman-group-exchange-sha1
|
||||
# - diffie-hellman-group-exchange-sha256
|
||||
# - ecdh-sha2-nistp256
|
||||
# - ecdh-sha2-nistp384
|
||||
# - ecdh-sha2-nistp521
|
||||
|
||||
#sshd_pubkey_accepted_algorithms:
|
||||
# - +ssh-rsa
|
||||
# - ssh-dss
|
||||
|
||||
|
||||
# sshd_kexalgorithms
|
||||
#
|
||||
# Example:
|
||||
# sshd_kexalgorithms:
|
||||
# - ntrup761x25519-sha512@openssh.com
|
||||
# - curve25519-sha256,curve25519-sha256@libssh.org
|
||||
# - ecdh-sha2-nistp256,ecdh-sha2-nistp384,ecdh-sha2-nistp521
|
||||
# - diffie-hellman-group-exchange-sha256
|
||||
# - diffie-hellman-group16-sha512,diffie-hellman-group18-sha512
|
||||
# - diffie-hellman-group14-sha256
|
||||
#
|
||||
#sshd_kexalgorithms: {}
|
||||
|
||||
# sshd__ciphers
|
||||
#
|
||||
# Example:
|
||||
# sshd_ciphers:
|
||||
# - chacha20-poly1305@openssh.com
|
||||
# - aes128-ctr
|
||||
# - aes192-ctr
|
||||
# - aes256-ctr
|
||||
# - aes128-gcm@openssh.com
|
||||
# - aes256-gcm@openssh.com
|
||||
#sshd_ciphers: {}
|
||||
|
||||
# sshd_macs
|
||||
#
|
||||
# Example:
|
||||
# sshd_macs:
|
||||
# - umac-64-etm@openssh.com,umac-128-etm@openssh.com
|
||||
# - hmac-sha2-256-etm@openssh.com,hmac-sha2-512-etm@openssh.com
|
||||
# - hmac-sha1-etm@openssh.com
|
||||
# - umac-64@openssh.com,umac-128@openssh.com
|
||||
# - hmac-sha2-256,hmac-sha2-512,hmac-sha1
|
||||
#sshd_macs: {}
|
||||
|
||||
# sshd_hostkeyalgorithms
|
||||
#
|
||||
# Example:
|
||||
# - ssh-ed25519-cert-v01@openssh.com
|
||||
# - ecdsa-sha2-nistp256-cert-v01@openssh.com
|
||||
# - ecdsa-sha2-nistp384-cert-v01@openssh.com
|
||||
# - ecdsa-sha2-nistp521-cert-v01@openssh.com
|
||||
# - sk-ssh-ed25519-cert-v01@openssh.com
|
||||
# - sk-ecdsa-sha2-nistp256-cert-v01@openssh.com
|
||||
# - rsa-sha2-512-cert-v01@openssh.com
|
||||
# - rsa-sha2-256-cert-v01@openssh.com
|
||||
# - ssh-ed25519
|
||||
# - ecdsa-sha2-nistp256,ecdsa-sha2-nistp384,ecdsa-sha2-nistp521
|
||||
# - sk-ssh-ed25519@openssh.com
|
||||
# - sk-ecdsa-sha2-nistp256@openssh.com
|
||||
# - rsa-sha2-512
|
||||
# - rsa-sha2-256
|
||||
#
|
||||
#sshd_hostkeyalgorithms: {}
|
||||
#sshd_required_rsa_size: 4096
|
||||
|
||||
# This users are allowed to use password authentification
|
||||
#
|
||||
@ -2250,8 +2166,12 @@ sudoers_file_user_back_privileges:
|
||||
- 'ALL=(root) NOPASSWD: /usr/bin/rsync'
|
||||
- 'ALL=(root) NOPASSWD: /usr/bin/find'
|
||||
- 'ALL=(root) NOPASSWD: /usr/bin/realpath'
|
||||
- 'ALL=(root) NOPASSWD: /root/bin/borg-backup/borg-umount-archiv.sh'
|
||||
- 'ALL=(root) NOPASSWD: /root/bin/borg-backup/borg-backup.sh'
|
||||
- 'ALL=(root) NOPASSWD: /root/bin/borg-backup/borg-backup-nc.sh'
|
||||
- 'ALL=(root) NOPASSWD: /root/bin/borg2-backup/borg2-umount-archiv.sh'
|
||||
- 'ALL=(root) NOPASSWD: /root/bin/borg2-backup/borg2-backup.sh'
|
||||
- 'ALL=(root) NOPASSWD: /root/bin/borg2-backup/borg2-backup-nc.sh'
|
||||
|
||||
|
||||
sudoers_file_user_back_postgres_privileges:
|
||||
|
||||
@ -67,7 +67,7 @@ default_user:
|
||||
password: $6$7oimWvvy$EHjynqU3KxaHie.9njz9rmVyh/dYpZOREl9gLo7fLrQXCAM9LqvrRvijCiAhfgnA6pz5VQe5oubkJQB0HF2pf/
|
||||
shell: /bin/bash
|
||||
ssh_keys:
|
||||
- 'ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIF5GDIFA6/i6lzkr+EP/EZM9glrK0eSR0nmrEFgUJ4n8 wadmin@ga-st-lsx1'
|
||||
- 'ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIF5GDIFA6/i6lzkr+EP/EZM9glrK0eSR0nmrEFgUJ4n8 wadmin@ga-st-lsx1'
|
||||
- 'ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAID17MN6fUg0D1dMSgVYIBpIy+sDBBmiaHmXRXU63TXJA wadmin@ga-st-li1303'
|
||||
- 'ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIKtK8/rxHL1MKX5AHrgAzUYu0kV+1iYCmknpTQ7F0ham wadmin@wolf-debtest'
|
||||
- 'ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIIcaDFxj0pYjOv/ohFVxVY2RKvy6ACZFPX9UkrUPHkbN wadmin@wolf-x1'
|
||||
|
||||
Reference in New Issue
Block a user