Update ..
This commit is contained in:
@ -49,58 +49,6 @@ locales:
|
||||
set_default_limit_nofile: false
|
||||
|
||||
|
||||
# ---
|
||||
# vars used by roles/common/tasks/sshd.yml
|
||||
# ---
|
||||
|
||||
sshd_ports:
|
||||
- 22
|
||||
|
||||
sshd_listen_address:
|
||||
- '::'
|
||||
- '0.0.0.0'
|
||||
|
||||
sshd_host_keys:
|
||||
- /etc/ssh/ssh_host_rsa_key
|
||||
- /etc/ssh/ssh_host_ecdsa_key
|
||||
- /etc/ssh/ssh_host_ed25519_key
|
||||
|
||||
sshd_permit_root_login: !!str "no"
|
||||
|
||||
sshd_authorized_keys_file: ".ssh/authorized_keys .ssh/authorized_keys2"
|
||||
|
||||
sshd_pubkey_authentication: !!str "yes"
|
||||
|
||||
sshd_password_authentication: !!str "no"
|
||||
|
||||
sshd_use_pam: !!str "yes"
|
||||
|
||||
sshd_print_motd: !!str "no"
|
||||
|
||||
# sshd_kexalgorithms
|
||||
#
|
||||
# Example:
|
||||
# sshd_kexalgorithms:
|
||||
# - curve25519-sha256@libssh.org
|
||||
# - diffie-hellman-group-exchange-sha256
|
||||
# - diffie-hellman-group14-sha1
|
||||
#
|
||||
sshd_kexalgorithms: {}
|
||||
|
||||
# sshd_kexalgorithms
|
||||
#
|
||||
# Example:
|
||||
# sshd_ciphers:
|
||||
# - chacha20-poly1305@openssh.com
|
||||
# - aes256-gcm@openssh.com
|
||||
# - aes256-ctr
|
||||
sshd_ciphers: {}
|
||||
|
||||
sshd_use_dns: !!str "no"
|
||||
|
||||
sshd_allowed_users: {}
|
||||
|
||||
|
||||
|
||||
# ---
|
||||
# vars used by apt.yml
|
||||
@ -241,6 +189,7 @@ apt_initial_install_stretch:
|
||||
- quota
|
||||
- quotatool
|
||||
- needrestart
|
||||
- socat
|
||||
|
||||
apt_initial_install_buster:
|
||||
- apt-transport-https
|
||||
@ -352,6 +301,7 @@ apt_initial_install_buster:
|
||||
- quota
|
||||
- quotatool
|
||||
- needrestart
|
||||
- socat
|
||||
|
||||
|
||||
apt_initial_install_xenial:
|
||||
@ -464,6 +414,7 @@ apt_initial_install_xenial:
|
||||
- quotatool
|
||||
- needrestart
|
||||
- ifupdown
|
||||
- socat
|
||||
|
||||
apt_initial_install_bionic:
|
||||
- apt-transport-https
|
||||
@ -575,6 +526,7 @@ apt_initial_install_bionic:
|
||||
- quotatool
|
||||
- needrestart
|
||||
- ifupdown
|
||||
- socat
|
||||
|
||||
apt_install_compiler_pkgs: false
|
||||
apt_compiler_pkgs:
|
||||
@ -755,6 +707,64 @@ webadmin_ssh_keypair: []
|
||||
webadmin_user: []
|
||||
|
||||
|
||||
# ---
|
||||
# vars used by roles/common/tasks/sshd.yml
|
||||
# ---
|
||||
|
||||
sshd_ports:
|
||||
- 22
|
||||
|
||||
sshd_listen_address:
|
||||
- '::'
|
||||
- '0.0.0.0'
|
||||
|
||||
sshd_host_keys:
|
||||
- /etc/ssh/ssh_host_rsa_key
|
||||
- /etc/ssh/ssh_host_ecdsa_key
|
||||
- /etc/ssh/ssh_host_ed25519_key
|
||||
|
||||
# only for debian version <= 9
|
||||
#
|
||||
sshd_use_privilege_separation: !!str "sandbox"
|
||||
|
||||
sshd_permit_root_login: !!str "no"
|
||||
|
||||
sshd_authorized_keys_file: ".ssh/authorized_keys .ssh/authorized_keys2"
|
||||
|
||||
sshd_pubkey_authentication: !!str "yes"
|
||||
|
||||
sshd_password_authentication: !!str "no"
|
||||
|
||||
sshd_use_pam: !!str "yes"
|
||||
|
||||
sshd_print_motd: !!str "no"
|
||||
|
||||
# sshd_kexalgorithms
|
||||
#
|
||||
# Example:
|
||||
# sshd_kexalgorithms:
|
||||
# - curve25519-sha256@libssh.org
|
||||
# - diffie-hellman-group-exchange-sha256
|
||||
# - diffie-hellman-group14-sha1
|
||||
#
|
||||
sshd_kexalgorithms: {}
|
||||
|
||||
# sshd_kexalgorithms
|
||||
#
|
||||
# Example:
|
||||
# sshd_ciphers:
|
||||
# - chacha20-poly1305@openssh.com
|
||||
# - aes256-gcm@openssh.com
|
||||
# - aes256-ctr
|
||||
sshd_ciphers: {}
|
||||
|
||||
sshd_use_dns: !!str "no"
|
||||
|
||||
sshd_allowed_users: {}
|
||||
|
||||
sshd_gateway_ports: !!str "no"
|
||||
|
||||
|
||||
# ---
|
||||
# vars used by roles/common/tasks/sudoers.yml
|
||||
# ---
|
||||
|
||||
Reference in New Issue
Block a user