summaryrefslogtreecommitdiff
path: root/roles/sshd/tasks
diff options
context:
space:
mode:
Diffstat (limited to 'roles/sshd/tasks')
-rw-r--r--roles/sshd/tasks/main.yml12
1 files changed, 6 insertions, 6 deletions
diff --git a/roles/sshd/tasks/main.yml b/roles/sshd/tasks/main.yml
index e638905b..2c81f497 100644
--- a/roles/sshd/tasks/main.yml
+++ b/roles/sshd/tasks/main.yml
@@ -5,11 +5,6 @@
state: present
- name: hardening ssh-server config
- lineinfile:
- regexp: "^#?\\s*{{ item.key }}"
- line: "{{ item.key }} {{ item.value }}"
- dest: /etc/ssh/sshd_config
- mode: 0644
with_dict:
IgnoreRhosts: "yes"
PermitRootLogin: "without-password"
@@ -18,7 +13,12 @@
PermitEmptyPasswords: "no"
UseDNS: "no"
loop_control:
- label: "{{ item.key }}"
+ label: "{{ item.key }} = {{ item.value }}"
+ lineinfile:
+ regexp: "^#?\\s*{{ item.key }}"
+ line: "{{ item.key }} {{ item.value }}"
+ dest: /etc/ssh/sshd_config
+ mode: 0644
notify: restart ssh
- name: limit allowed users