30 lines
661 B
Django/Jinja
30 lines
661 B
Django/Jinja
Protocol 2
|
|
Port {{ ansible_port }}
|
|
ListenAddress {{ ansible_default_ipv4.address }}
|
|
{% if ansible_default_ipv6.address is defined %}
|
|
ListenAddress {{ ansible_default_ipv6.address }}
|
|
{% endif %}
|
|
|
|
HostKey /etc/ssh/ssh_host_rsa_key
|
|
HostKey /etc/ssh/ssh_host_ed25519_key
|
|
|
|
PermitRootLogin without-password
|
|
StrictModes yes
|
|
MaxAuthTries 2
|
|
AllowUsers root
|
|
|
|
PubkeyAuthentication yes
|
|
AuthenticationMethods publickey
|
|
AuthorizedKeysFile .ssh/authorized_keys
|
|
PasswordAuthentication no
|
|
PermitEmptyPasswords no
|
|
|
|
IgnoreRhosts yes
|
|
UsePAM yes
|
|
ChallengeResponseAuthentication no
|
|
PrintMotd no
|
|
X11Forwarding no
|
|
AllowTcpForwarding no
|
|
|
|
Subsystem sftp /usr/lib/openssh/sftp-server
|