dev-sec/ansible-ssh-hardening
This Ansible role provides numerous security-related ssh configurations, providing all-round base protection.
HTML
Issues
- 1
MOTD Enabled prints MOTD twice on Ubuntu
#319 opened by jribar - 3
Make SSH banner path configurable
#315 opened by liteua - 6
RHEL/CentOS 8 requires removal or editing of /etc/crypto-policies/back-ends/openssh*.config
#275 opened by Teknoenie - 9
network_ipv6_enable: true not working
#311 opened by altf4arnold - 3
Add CentOS 8 support for ansible-ssh-hardening
#247 opened by rndmh3ro - 5
CBC Ciphers should be disabled by default.
#308 opened by salderma - 2
Possibility for customising host key algorithms?
#243 opened by aodj - 9
Idempotency when changing sshd ports
#299 opened by nununo - 1
Simplify crypto.yml checks with blocks
#256 opened by rndmh3ro - 1
Typo in hardening.yml
#303 opened by coderph0x - 1
Task create sshd_config and set permissions fails
#302 opened by magick93 - 1
Add support for X11 configuration
#297 opened by bajzekm - 5
Add RHEL 8 Support
#261 opened by pugnacity - 10
- 4
AllowTCPForwarding set to `no` although I have `ssh_allow_tcp_forwarding: yes`
#286 opened by jeanmonet - 4
Ubuntu disable dynamic MOTD failing
#283 opened by manfredlift - 3
Disable Ubuntu dynamic login MOTD
#271 opened by ancoron - 2
New Relese?
#276 opened by kostasns - 2
Allow enabling X11Forwarding
#216 opened by RogerSik - 2
Remove dependency on bash
#265 opened by kljensen - 0
HostKey comment "# Req 20" breaks key based auth
#262 opened by abtreece - 2
Cannot install policycoreutils-python on Fedora 31
#259 opened by agross - 0
- 1
SSH not installed
#241 opened by rgarrigue - 1
- 5
Allow SSH Password login for specific users
#215 opened by RogerSik - 4
SSH fails to start/connect if custom server ports is set on CentOS 7.6
#212 opened by yeawellwhatever - 1
- 2
Some options not configurable via the role
#239 opened by bschonec - 8
- 2
Add new option ssh_server_match_address
#230 opened by MatthiasLohr - 5
- 1
deprecation warnings in Ansible 2.8
#226 opened by sfuerte - 1
sshd_custom_options used in ssh_config generation
#224 opened by sfuerte - 2
- 7
add option to skip ssh restart handler
#209 opened by snoopotic - 3
Match Group' in configuration but 'user' not in connection test specification
#188 opened by kravietz - 2
Question: How to allow RemoteForward
#191 opened by MatthiasLohr - 2
- 11
Allow custom values
#175 opened by varac - 4
sshd_custom_options not working..
#200 opened by aventrax - 4
- 6
PermitRootLogin yes
#190 opened by ikr0m - 3
Support StreamLocalBindUnlink
#197 opened by MatthiasLohr - 1
GSSAPI support broken. Can't be enabled.
#192 opened by vidkun - 2
- 2
Ubuntu 18.04 support
#182 opened by aghamir - 3
Add molecule testing
#183 opened by jamatute - 1
Weak kex are controlled by wrong variable ?
#174 opened by gdelafond - 2
Fixing the broken Ansible dependency mechanism
#176 opened by jcheroske