2022-08-30 15:18:44 +02:00
|
|
|
# Yggdrasil SSH daemon configuration. Note that sshd_config(5) states "For each keyword, the first
|
|
|
|
# obtained value will be used." This is why, despite files > 00 being read later, settings
|
|
|
|
# configured in this file are retained.
|
|
|
|
|
|
|
|
Port {{ ansible_port }}
|
|
|
|
|
|
|
|
# Completely disable root login via ssh.
|
|
|
|
PermitRootLogin no
|
|
|
|
|
|
|
|
# Explicitly set the list of allowed ssh users.
|
|
|
|
AllowUsers {{ ssh_user }}
|
|
|
|
|
|
|
|
# SSH enabled only via ssh-key.
|
|
|
|
PasswordAuthentication no
|
|
|
|
|
|
|
|
# No X window forwarding.
|
|
|
|
X11Forwarding no
|
2022-09-21 23:57:15 +02:00
|
|
|
|
|
|
|
# Check in with the client every now and then.
|
|
|
|
ClientAliveInterval 120
|