mirror of
https://github.com/willshersystems/ansible-sshd
synced 2024-12-24 17:40:18 +01:00
Merge branch 'release/0.2.2'
This commit is contained in:
commit
bd4fd564aa
7 changed files with 23 additions and 12 deletions
|
@ -1,3 +1,7 @@
|
||||||
|
0.2.2 13 January 2014 Matt Willsher <matt@willsher.systems>
|
||||||
|
- Add warnings to README
|
||||||
|
- Tidy up naming
|
||||||
|
- Remove blacklist packages from Debian based distros
|
||||||
0.2.1 12 January 2014 Matt Willsher <matt@willsher.systems>
|
0.2.1 12 January 2014 Matt Willsher <matt@willsher.systems>
|
||||||
- Standardise README.md format
|
- Standardise README.md format
|
||||||
- Add basic Travis CI testing
|
- Add basic Travis CI testing
|
||||||
|
|
12
README.md
12
README.md
|
@ -1,3 +1,5 @@
|
||||||
|
[![Build Status](https://travis-ci.org/WillsherSystems/ansible-sshd.svg?branch=master)](https://travis-ci.org/WillsherSystems/ansible-sshd) [![Ansible Galaxy](http://img.shields.io/badge/galaxy-willshersystems.sshd-660198.svg?style=flat)](https://galaxy.ansible.com/list#/roles/2488)
|
||||||
|
|
||||||
OpenSSH Server
|
OpenSSH Server
|
||||||
==============
|
==============
|
||||||
|
|
||||||
|
@ -11,6 +13,16 @@ This role configures the OpenSSH daemon. It:
|
||||||
(see [meta/make_option_list](meta/make_option_list))
|
(see [meta/make_option_list](meta/make_option_list))
|
||||||
* Tests the sshd_config before reloading sshd.
|
* Tests the sshd_config before reloading sshd.
|
||||||
|
|
||||||
|
**WARNING** Misconfiguration of this role can lock you out of your server!
|
||||||
|
Please test your configuration and its interaction with your users configuration
|
||||||
|
before using in production!
|
||||||
|
|
||||||
|
**WARNING** Digital Ocean allows root with passwords via SSH on Debian and
|
||||||
|
Ubuntu. This is not the default assigned by this module - it will set
|
||||||
|
`PermitRootLogin without-password` which will allow access via SSH key but not
|
||||||
|
via simple password. If you need this functionality, be sure to set
|
||||||
|
`ssh_PermitRootLogin yes` for those hosts.
|
||||||
|
|
||||||
Requirements
|
Requirements
|
||||||
------------
|
------------
|
||||||
|
|
||||||
|
|
|
@ -1,9 +1,9 @@
|
||||||
---
|
---
|
||||||
- name: check and reload sshd
|
- name: check_and_reload_sshd
|
||||||
command: "{{ sshd_binary }} -t"
|
command: "{{ sshd_binary }} -t"
|
||||||
notify: reload sshd
|
notify: reload_sshd
|
||||||
|
|
||||||
- name: reload sshd
|
- name: reload_sshd
|
||||||
service:
|
service:
|
||||||
name: "{{ sshd_service }}"
|
name: "{{ sshd_service }}"
|
||||||
state: reloaded
|
state: reloaded
|
||||||
|
|
|
@ -1,5 +1,5 @@
|
||||||
---
|
---
|
||||||
- name: Role set up
|
- name: Set OS dependent variables
|
||||||
include_vars: "{{ item }}"
|
include_vars: "{{ item }}"
|
||||||
with_first_found:
|
with_first_found:
|
||||||
- "{{ ansible_distribution }}_{{ ansible_distribution_major_version }}.yml"
|
- "{{ ansible_distribution }}_{{ ansible_distribution_major_version }}.yml"
|
||||||
|
@ -19,14 +19,14 @@
|
||||||
tags:
|
tags:
|
||||||
- sshd
|
- sshd
|
||||||
|
|
||||||
- name: Configured
|
- name: Configuration
|
||||||
template:
|
template:
|
||||||
src: sshd_config.j2
|
src: sshd_config.j2
|
||||||
dest: "{{ sshd_config_file }}"
|
dest: "{{ sshd_config_file }}"
|
||||||
owner: "{{ sshd_config_owner }}"
|
owner: "{{ sshd_config_owner }}"
|
||||||
group: "{{ sshd_config_group }}"
|
group: "{{ sshd_config_group }}"
|
||||||
mode: "{{ sshd_config_mode }}"
|
mode: "{{ sshd_config_mode }}"
|
||||||
notify: check and reload sshd
|
notify: check_and_reload_sshd
|
||||||
tags:
|
tags:
|
||||||
- sshd
|
- sshd
|
||||||
|
|
||||||
|
@ -37,3 +37,4 @@
|
||||||
state: running
|
state: running
|
||||||
tags:
|
tags:
|
||||||
- sshd
|
- sshd
|
||||||
|
|
||||||
|
|
|
@ -2,8 +2,6 @@
|
||||||
sshd_service: ssh
|
sshd_service: ssh
|
||||||
sshd_packages:
|
sshd_packages:
|
||||||
- openssh-server
|
- openssh-server
|
||||||
- openssh-blacklist
|
|
||||||
- openssh-blacklist-extra
|
|
||||||
- openssh-sftp-server
|
- openssh-sftp-server
|
||||||
sshd_config_mode: "0644"
|
sshd_config_mode: "0644"
|
||||||
sshd_defaults:
|
sshd_defaults:
|
||||||
|
|
|
@ -2,8 +2,6 @@
|
||||||
sshd_service: ssh
|
sshd_service: ssh
|
||||||
sshd_packages:
|
sshd_packages:
|
||||||
- openssh-server
|
- openssh-server
|
||||||
- openssh-blacklist
|
|
||||||
- openssh-blacklist-extra
|
|
||||||
- openssh-sftp-server
|
- openssh-sftp-server
|
||||||
sshd_config_mode: "0644"
|
sshd_config_mode: "0644"
|
||||||
sshd_defaults:
|
sshd_defaults:
|
||||||
|
|
|
@ -2,8 +2,6 @@
|
||||||
sshd_service: ssh
|
sshd_service: ssh
|
||||||
sshd_packages:
|
sshd_packages:
|
||||||
- openssh-server
|
- openssh-server
|
||||||
- openssh-blacklist
|
|
||||||
- openssh-blacklist-extra
|
|
||||||
- openssh-sftp-server
|
- openssh-sftp-server
|
||||||
sshd_config_mode: "0644"
|
sshd_config_mode: "0644"
|
||||||
sshd_defaults:
|
sshd_defaults:
|
||||||
|
|
Loading…
Reference in a new issue