verdnatura/vn-ansible
verdnatura
/
vn-ansible
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

8025-awxRefactor-debianBootStrap #30

Merged
juan merged 37 commits from 8025-awxRefactor-debianBootStrap into main 2024-10-16 14:49:33 +00:00
Conversation 0 Commits 37 Files Changed 36 +11 -7
1 changed files with 11 additions and 7 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files
Showing only changes of commit 94ca22734d - Show all commits

18
roles/debian-base/tasks/ssh.yml
View File

@ -5,13 +5,17 @@
size: 4096
register: new_pair
xavi marked this conversation as resolved Outdated
juan commented 2024-10-16 08:30:16 +00:00
Outdated
Review
Copy Link

Primero borrar y luego generar, generar todos los tipos de clave

Primero borrar y luego generar, generar todos los tipos de clave
- name: Configure sshd_config settings
lineinfile:
path: /etc/ssh/sshd_config
regexp: "{{ item.regexp }}"
line: "{{ item.line }}"
loop:
- { regexp: '^#ListenAddress 0.0.0.0', line: 'ListenAddress 0.0.0.0' }
- { regexp: '^#SyslogFacility AUTH', line: 'SyslogFacility AUTH' }
copy:
dest: /etc/ssh/sshd_config.d/custom.conf
content: |
# Do not edit this file! Ansible will overwrite it.
ListenAddress 0.0.0.0
SyslogFacility AUTH
permitRootLogin yes
owner: root
group: root
mode: '0644'
xavi marked this conversation as resolved Outdated
juan commented 2024-10-16 08:29:47 +00:00
Outdated
Review
Copy Link

Esto lo pondría en la tarea de fail2ban

Esto lo pondría en la tarea de fail2ban
- name: Delete old host SSH keys
file:
path: "{{ item }}"