transatoshi/grinminer.net
1
0
Fork 0
mirror of https://github.com/transatoshi-mw/grinminer.net.git synced 2025-10-06 22:02:48 +00:00
Code Issues 3 Packages Projects 1 Releases Wiki Activity

updated ssh-hardening.yml

Browse Source
This commit is contained in:
transatoshi
2025-01-11 19:20:19 -08:00
parent fd450665aa
commit af716be0b0
1 changed files with 11 additions and 4 deletions
Download Patch File Download Diff File Expand all files Collapse all files

15
ansible/ssh-hardening.yml
View File

@@ -22,14 +22,21 @@
- name: Replace PermitRootLogin - name: Replace PermitRootLogin
ansible.builtin.replace: ansible.builtin.replace:
path: /etc/ssh/sshd_config path: /etc/ssh/sshd_config
regexp: PermitRootLogin yes regexp: 'PermitRootLogin yes'
replace: PermitRootLogin prohibit-password replace: 'PermitRootLogin prohibit-password'
- name: Replace PasswordAuthentication - name: Replace PasswordAuthentication
ansible.builtin.replace: ansible.builtin.replace:
path: /etc/ssh/sshd_config path: /etc/ssh/sshd_config
regexp: PasswordAuthentication yes regexp: '#PasswordAuthentication yes'
replace: PasswordAuthentication no replace: 'PasswordAuthentication no'
- name: Replace PasswordAuthentication
ansible.builtin.replace:
path: /etc/ssh/sshd_config
regexp: 'PasswordAuthentication yes'
replace: 'PasswordAuthentication no'
- name: Restart SSH - name: Restart SSH
ansible.builtin.shell: ansible.builtin.shell: