Skip to content

Latest commit

 

History

History

openssh

Folders and files

NameName
Last commit message
Last commit date

parent directory

..
defaults
defaults
 
 
tasks
tasks
 
 
README.md
README.md
 
 

README.md

Hardening OpenSSH server

Tasks

  • Force public key authentication disable password login.
  • Optionally, limit allowed login user.
  • Optionally, set up firewall rule.

Variables

# Limit login users if defined
# AllowUsers in /etc/ssh/sshd_config
#ssh_allowusers: 'user1 user2 user3'


# Set hostkey
# HostKey in /etc/ssh/sshd_config
#ssh_hostkey: ed25519


# Only allow ssh connection from these ip address
#ssh_accept_source_ipv4:
#  - 192.168.122.0/24
#  - 192.168.123.1