rene/ansible-pull
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity

enable ssh host key verification over DNS

Browse Source
This commit is contained in:
Rene Mewissen
2025-05-01 16:25:32 +02:00
parent 2fbad5bd6b
commit 6e1058e59e
2 changed files with 11 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

1
roles/base/files/system_setup/ssh_custom.conf Normal file
View File

@@ -0,0 +1 @@
VerifyHostKeyDNS yes

10
roles/base/tasks/system_setup/openssh.yml
View File

@@ -36,6 +36,16 @@
mode: '0644'
notify: restart_sshd
- name: system setup | openssh | copy ssh client custom config
tags: openssh,ssh,system,settings
copy:
force: True
src: system_setup/ssh_custom.conf
dest: /etc/ssh/ssh_config.d/custom.conf
owner: root
group: root
mode: '0644'
- name: system setup | openssh | install fail2ban
tags: fail2ban,ssh,system,settings
package: