feat: add proxmox exceptions
This commit is contained in:
parent
d248666bed
commit
abb854ebee
1 changed files with 12 additions and 1 deletions
|
|
@ -6,10 +6,17 @@ ListenAddress 0.0.0.0
|
||||||
ListenAddress ::
|
ListenAddress ::
|
||||||
|
|
||||||
# hostkey
|
# hostkey
|
||||||
|
{% if inventory_hostname in groups['proxmox'] %}
|
||||||
|
HostKey /etc/ssh/ssh_host_rsa_key
|
||||||
|
{% endif %}
|
||||||
HostKey /etc/ssh/ssh_host_ed25519_key
|
HostKey /etc/ssh/ssh_host_ed25519_key
|
||||||
|
|
||||||
# Authentication
|
# Authentication
|
||||||
|
{% if inventory_hostname in groups['proxmox'] %}
|
||||||
|
PermitRootLogin yes
|
||||||
|
{% else %}
|
||||||
PermitRootLogin no
|
PermitRootLogin no
|
||||||
|
{% endif %}
|
||||||
|
|
||||||
# Hardening
|
# Hardening
|
||||||
StrictModes yes
|
StrictModes yes
|
||||||
|
|
@ -19,7 +26,11 @@ LoginGraceTime 15
|
||||||
MaxSessions 8
|
MaxSessions 8
|
||||||
PasswordAuthentication no
|
PasswordAuthentication no
|
||||||
PubkeyAuthentication yes
|
PubkeyAuthentication yes
|
||||||
|
{% if inventory_hostname in groups['proxmox'] %}
|
||||||
|
AllowUsers ansible drone hugo root simon
|
||||||
|
{% else %}
|
||||||
AllowUsers ansible drone hugo simon
|
AllowUsers ansible drone hugo simon
|
||||||
|
{% endif %}
|
||||||
VersionAddendum ""
|
VersionAddendum ""
|
||||||
IgnoreRhosts yes
|
IgnoreRhosts yes
|
||||||
UseDNS no
|
UseDNS no
|
||||||
|
|
|
||||||
Loading…
Add table
Add a link
Reference in a new issue