Commit f0c67cbe authored by Tilman Vatteroth's avatar Tilman Vatteroth 💻

lowercase all vars

parent b138f9fc
......@@ -4,12 +4,12 @@ This role installs and configures an OpenSSH-Server. It uses [Mozilla's Modern C
## Variables
- `SSHD_PORT`: The port sshd should listen on. (Default: 22)
- `SSHD_PERMIT_ROOT_LOGIN`: Allow Root-Login (Default: no)
- `SSHD_ALLOW_PUBKEYS`: Allow login with pubkey (Default: yes)
- `SSHD_ALLOW_PASSWORDS`: Allow login with passwords (Default: no)
- `SSHD_PRINT_MOTD`: Print the MotD after login (Default: no)
- `SSHD_AGENT_FORWARDING`: Allow Agent-Forwarding (Default: yes)
- `SSHD_TCP_FORWARDING`: Allow TCP-Forwarding (Default: yes)
- `SSHD_X11_FORWARDING`: Allow X11-Forwarding (Default: yes)
- `SSHD_LISTEN_ADDRESSES`: The addresses sshd should listen on. (Default: 0.0.0.0 and ::)
- sshd_port: The port sshd should listen on. (Default: 22)
- sshd_permit_root_login: Allow Root-Login (Default: no)
- sshd_allow_pubkeys: Allow login with pubkey (Default: yes)
- sshd_allow_passwords: Allow login with passwords (Default: no)
- sshd_print_motd: Print the MotD after login (Default: no)
- sshd_agent_forwarding: Allow Agent-Forwarding (Default: yes)
- sshd_tcp_forwarding: Allow TCP-Forwarding (Default: yes)
- sshd_x11_forwarding: Allow X11-Forwarding (Default: yes)
- sshd_listen_addresses: The addresses sshd should listen on. (Default: 0.0.0.0 and ::)
---
SSHD_PORT: 22
SSHD_PERMIT_ROOT_LOGIN: no
SSHD_ALLOW_PUBKEYS: yes
SSHD_ALLOW_PASSWORDS: no
SSHD_PRINT_MOTD: no
SSHD_AGENT_FORWARDING: no
SSHD_TCP_FORWARDING: no
SSHD_X11_FORWARDING: no
SSHD_LISTEN_ADDRESSES:
sshd_port 22
sshd_permit_root_login no
sshd_allow_pubkeys yes
sshd_allow_passwords no
sshd_print_motd no
sshd_agent_forwarding no
sshd_tcp_forwarding no
sshd_x11_forwarding no
sshd_listen_addresses
- "0.0.0.0"
- "::"
# MANAGED BY ANSIBLE
# EVERY CHANGE WILL BE PURGED
Port {{ SSHD_PORT }}
Port {{ sshd_port }}
#AddressFamily any
{% for item in SSHD_LISTEN_ADDRESSES %}
ListenAddress {{ item }}
......@@ -14,14 +14,14 @@ ListenAddress {{ item }}
#SyslogFacility AUTH
#LoginGraceTime 2m
PermitRootLogin {{ 'yes' if SSHD_PERMIT_ROOT_LOGIN else 'no' }}
PermitRootLogin {{ 'yes' if sshd_permit_root_login else 'no' }}
#StrictModes yes
#MaxAuthTries 6
#MaxSessions 10
# Authentication
PubkeyAuthentication {{ 'yes' if SSHD_ALLOW_PUBKEYS else 'no' }}
PasswordAuthentication {{ 'yes' if SSHD_ALLOW_PASSWORDS else 'no' }}
PubkeyAuthentication {{ 'yes' if sshd_allow_pubkeys else 'no' }}
PasswordAuthentication {{ 'yes' if sshd_allow_passwords else 'no' }}
PermitEmptyPasswords no
AuthorizedKeysFile .ssh/authorized_keys
......@@ -54,14 +54,14 @@ ChallengeResponseAuthentication no
# and ChallengeResponseAuthentication to 'no'.
UsePAM yes
AllowAgentForwarding {{ 'yes' if SSHD_AGENT_FORWARDING else 'no' }}
AllowTcpForwarding {{ 'yes' if SSHD_TCP_FORWARDING else 'no' }}
AllowAgentForwarding {{ 'yes' if sshd_agent_forwarding else 'no' }}
AllowTcpForwarding {{ 'yes' if sshd_tcp_forwarding else 'no' }}
#GatewayPorts no
X11Forwarding {{ 'yes' if SSHD_X11_FORWARDING else 'no' }}
X11Forwarding {{ 'yes' if sshd_x11_forwarding else 'no' }}
#X11DisplayOffset 10
#X11UseLocalhost yes
#PermitTTY yes
PrintMotd {{ 'yes' if SSHD_PRINT_MOTD else 'no' }}
PrintMotd {{ 'yes' if sshd_print_motd else 'no' }}
#PrintLastLog yes
TCPKeepAlive yes
#UseLogin no
......
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment