Skip to content
/ ansible-role-secure-ssh Public

Ansible role that configures SSH to follow better security practices

1 star 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

dheles/ansible-role-secure-ssh

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

8 Commits

defaults

defaults

 
 

handlers

handlers

 
 

meta

meta

 
 

tasks

tasks

 
 

tests

tests

 
 

vars

vars

 
 

.travis.yml

.travis.yml

 
 

README.md

README.md

 
 

Repository files navigation

Ansible Role: Secure SSH

Configure SSH to follow better security practices.

Requirements

SSH key logins.

By default, this role will prevent password logins in favor of ssh keys. Running the login-user role first will set this up for you. If you aren't going to use that role, you will want to either achieve a similar result by another means or override this role's behavior (by means of a mechanism not yet written).

Role Variables

This role sets sane OS-specific defaults and is not yet very configurable, so the variables are simple and few:

ssh_service: ssh

The name of the service that provides SSH on your OS. Typically, ssh for Debian family and sshd of RedHat family. These two will be detected by the role. Override this variable to support other OSes, if necessary. Better yet, submit a pull request to fix it proper.

ssh_config: "/etc/ssh/sshd_config"

Location of the system-wide (not per-user) SSH configuration file on your OS (see above).

Dependencies

None, per se, but see "Requirements" above.

Example Playbook

- name: secure SSH
  hosts: all
  become: true

  roles:
     - { role: secure-ssh }

License

CC0

Author Information

Drew Heles

About

Ansible role that configures SSH to follow better security practices

Resources

Readme
Activity

Stars

1 star

Watchers

2 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published