Default SSH config

author Silvio Rhatto <rhatto@riseup.net>

Mon, 28 Mar 2016 17:39:40 +0000 (14:39 -0300)

committer Silvio Rhatto <rhatto@riseup.net>

Mon, 28 Mar 2016 17:39:40 +0000 (14:39 -0300)
author Silvio Rhatto <rhatto@riseup.net>
Mon, 28 Mar 2016 17:39:40 +0000 (14:39 -0300)
committer Silvio Rhatto <rhatto@riseup.net>
Mon, 28 Mar 2016 17:39:40 +0000 (14:39 -0300)
diff --git a/config/common.yaml b/config/common.yaml

index 006c5a8ac53071476b11e253e7c5611fbd7eac15..3c6fe7baf28f8162bcc7a111fc74483be8d0f0c4 100644 (file)
--- a/config/common.yaml
+++ b/config/common.yaml
@@ -43,3 +43,18 @@ ntp::servers:
  nodo::subsystem::resolver::nameservers:
    - '208.67.222.222'
    - '208.67.220.220'
+
+#
+# OpenSSH
+#
+sshd::use_storedconfigs       : false
+sshd::manage_nagios           : false
+sshd::listen_address          : [ "%{::ipaddress}", '127.0.0.1' ]
+sshd::password_authentication : 'yes'
+sshd::shared_ip               : 'yes'
+sshd::tcp_forwarding          : 'yes'
+sshd::x11_forwarding          : 'no'
+sshd::hardened                : 'yes'
+sshd::print_motd              : 'no'
+sshd::ports                   : [ 22 ]
+sshd::use_pam                 : 'no'
author	Silvio Rhatto <rhatto@riseup.net>
	Mon, 28 Mar 2016 17:39:40 +0000 (14:39 -0300)
committer	Silvio Rhatto <rhatto@riseup.net>
	Mon, 28 Mar 2016 17:39:40 +0000 (14:39 -0300)