Skip to content
Snippets Groups Projects
Commit 778644f8 authored by skorpy's avatar skorpy :construction_worker:
Browse files

ssh: update

parent 27c9430c
No related branches found
No related tags found
1 merge request!245Ganeti
Hide whitespace changes
Inline Side-by-side
Showing
with 3 additions and 6 deletions
ssh/files/sshd_config
+ 3
6
View file @ 778644f8
......@@ -7,18 +7,15 @@ Protocol 2
HostKey /etc/ssh/ssh_host_ed25519_key
HostKey /etc/ssh/ssh_host_rsa_key
PermitRootLogin {% if 'vmhost' in pillar.get('roles', []) %}prohibit-password{% else %}no{% endif %}
PasswordAuthentication no
ChallengeResponseAuthentication no
PubkeyAuthentication yes
AllowGroups ssh-user
AuthenticationMethods publickey
KexAlgorithms curve25519-sha256@libssh.org,diffie-hellman-group-exchange-sha256
Ciphers chacha20-poly1305@openssh.com,aes256-gcm@openssh.com,aes128-gcm@openssh.com,aes256-ctr,aes192-ctr,aes128-ctr
MACs hmac-sha2-512-etm@openssh.com,hmac-sha2-256-etm@openssh.com,hmac-ripemd160-etm@openssh.com,umac-128-etm@openssh.com,hmac-sha2-512,hmac-sha2-256,hmac-ripemd160,umac-128@openssh.com
MACs hmac-sha2-512-etm@openssh.com,hmac-sha2-256-etm@openssh.com,umac-128-etm@openssh.com,hmac-sha2-512,hmac-sha2-256,umac-128@openssh.com
Subsystem sftp /usr/lib/openssh/sftp-server
UsePAM yes
......
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Please register or to comment