Browse Source

Unpieterized sshd_config

pull/11/head
Egon Rijpkema 3 years ago
parent
commit
cf223a28a5
  1. 7
      roles/ldap/templates/sshd_config

7
roles/ldap/templates/sshd_config

@ -54,13 +54,10 @@ LogLevel VERBOSE @@ -54,13 +54,10 @@ LogLevel VERBOSE
# Authentication:
#
# Never allow this. We have admin users who can sudo
# (see users.yml in the gearshift repo)
PermitRootLogin no
PermitRootLogin yes
# The default is to check both .ssh/authorized_keys and .ssh/authorized_keys2,
# but we disable this by default as public keys for regular users come from LDAP.
AuthorizedKeysFile /dev/null
PasswordAuthentication no
PermitEmptyPasswords no
@ -89,5 +86,3 @@ AuthorizedKeysCommandUser root @@ -89,5 +86,3 @@ AuthorizedKeysCommandUser root
# 129.125.249.0/24 # RUG BeheersWerkPlek
# 172.23.40.1/24 # Management VLAN 983
#
Match Group admin
AuthorizedKeysFile .ssh/authorized_keys

Loading…
Cancel
Save