2014-12-18 23:12:51 +01:00
|
|
|
# Ansible OpenSSH Daemon Role
|
|
|
|
|
|
2014-12-22 21:18:35 +01:00
|
|
|
This role configures the OpenSSH daemon. It:
|
2014-12-18 23:12:51 +01:00
|
|
|
|
2014-12-22 21:18:35 +01:00
|
|
|
- By default configures the SSH daemon with the normal OS defaults. Defaults can be disabled by setting `sshd_skip_defaults: true`
|
|
|
|
|
- Supports use of a dict to configure items:
|
|
|
|
|
|
|
|
|
|
```yaml
|
2014-12-21 21:39:44 +01:00
|
|
|
sshd:
|
|
|
|
|
Compression: delayed
|
|
|
|
|
ListenAddress:
|
|
|
|
|
- 0.0.0.0
|
|
|
|
|
```
|
2014-12-18 23:12:51 +01:00
|
|
|
|
2014-12-22 21:18:35 +01:00
|
|
|
- Can use scalars rather than a dict. Scalar values override dict values:
|
|
|
|
|
|
|
|
|
|
```yaml
|
|
|
|
|
sshd_Compression: off
|
|
|
|
|
```
|
|
|
|
|
|
|
|
|
|
- Correctly interprets booleans as yes and no in sshd configuration
|
|
|
|
|
- Supports lists for multi line configuration items
|
|
|
|
|
- Tests the sshd_config before reloading sshd
|
|
|
|
|
- Template is programmatically generated. See the files in the meta folder. It should cover all valid SSH options.
|
2014-12-25 11:01:26 +01:00
|
|
|
- Support match section either via Match in the sshd dict, sshd_match and any of sshd_match_1 through sshd_match_9.
|
