From 8c96e48debb8e05126e208b4fbdc0dc56fe1c582 Mon Sep 17 00:00:00 2001
From: Sven Velt <sven@velt.de>
Date: Thu, 12 May 2022 15:10:32 +0200
Subject: [PATCH] README updated

---
 README.md | 17 ++++++++++++++---
 1 file changed, 14 insertions(+), 3 deletions(-)

diff --git a/README.md b/README.md
index a6f6c71..d1e1440 100644
--- a/README.md
+++ b/README.md
@@ -1,17 +1,28 @@
 ssh-hardening
 =========
 
-SSH hardening, based on https://www.sshaudit.com & more
+SSH server hardening, based on https://www.sshaudit.com & more
 
 Requirements
 ------------
 
-- tbd
+- OpenSSH versions 6.5+
 
 Role Variables
 --------------
 
-- tbd
+Defaults:
+- `ssh_hardening_hostkeys`: `rsa`, `ed25519`
+- `ssh_hardening_hostkeys_all`: `dsa`, `ecdsa`, `rsa`, `ed25519`
+- `ssh_hardening_moduli`: `/etc/ssh/moduli`
+- `ssh_hardening_moduli_backup`: `/etc/ssh/moduli.not-hardened`
+- `ssh_hardening_sshd_config`: `/etc/ssh/sshd_config`
+
+Included via `vars/ssh_*`:
+- `ssh_hardening_opts`: Parameter/Values to set for specific SSH version
+
+Command line variables (undefined):
+- `ssh_hardening_force`: version/id to include, overwrites detected version!
 
 Dependencies
 ------------