README updated
This commit is contained in:
Sven Velt
parent
7b0fd3e6c6
commit
8c96e48deb
17
README.md
17
README.md
|
|
@ -1,17 +1,28 @@
|
||||||
ssh-hardening
|
ssh-hardening
|
||||||
=========
|
=========
|
||||||
|
|
||||||
SSH hardening, based on https://www.sshaudit.com & more
|
SSH server hardening, based on https://www.sshaudit.com & more
|
||||||
|
|
||||||
Requirements
|
Requirements
|
||||||
------------
|
------------
|
||||||
|
|
||||||
- tbd
|
- OpenSSH versions 6.5+
|
||||||
|
|
||||||
Role Variables
|
Role Variables
|
||||||
--------------
|
--------------
|
||||||
|
|
||||||
- tbd
|
Defaults:
|
||||||
|
- `ssh_hardening_hostkeys`: `rsa`, `ed25519`
|
||||||
|
- `ssh_hardening_hostkeys_all`: `dsa`, `ecdsa`, `rsa`, `ed25519`
|
||||||
|
- `ssh_hardening_moduli`: `/etc/ssh/moduli`
|
||||||
|
- `ssh_hardening_moduli_backup`: `/etc/ssh/moduli.not-hardened`
|
||||||
|
- `ssh_hardening_sshd_config`: `/etc/ssh/sshd_config`
|
||||||
|
|
||||||
|
Included via `vars/ssh_*`:
|
||||||
|
- `ssh_hardening_opts`: Parameter/Values to set for specific SSH version
|
||||||
|
|
||||||
|
Command line variables (undefined):
|
||||||
|
- `ssh_hardening_force`: version/id to include, overwrites detected version!
|
||||||
|
|
||||||
Dependencies
|
Dependencies
|
||||||
------------
|
------------
|
||||||
|
|
|
||||||
Loading…
Reference in a new issue