ansible-edda/playbooks/roles/system/base/templates/sshd/99-local.conf.j2

20 lines
600 B
Plaintext
Raw Normal View History

# SSH daemon configuration. Note that sshd_config(5) states "For each keyword, the first obtained
# value will be used." This is why files < 00 which are read earlier override the settings below.
2022-08-30 15:18:44 +02:00
Port {{ ansible_port }}
# Completely disable root login via ssh.
PermitRootLogin no
# Explicitly set the list of allowed ssh users.
2022-12-11 01:11:44 +01:00
AllowUsers {{ [system_base_ssh_user] | union(system_base_additional_ssh_users) | join(" ") }}
2022-08-30 15:18:44 +02:00
# SSH enabled only via ssh-key.
PasswordAuthentication no
# No X window forwarding.
X11Forwarding no
2022-09-21 23:57:15 +02:00
# Check in with the client every now and then.
ClientAliveInterval 120