roles/common: Increase ssh MaxAuthTries from 3 to 4

If a user has RSA, ECDSA, and ED25519 private keys present on their system then the ssh client will offer all of these to the server and they may not get a chance to try password auth before it fails.
2019-09-15 15:17:00 +03:00 · 2019-09-15 15:17:00 +03:00 · 2740f050fc
commit 2740f050fc
parent cf16264f53
4 changed files with 4 additions and 4 deletions
--- a/roles/common/templates/sshd_config_Debian-10.j2
+++ b/roles/common/templates/sshd_config_Debian-10.j2
@ -31,7 +31,7 @@ LogLevel VERBOSE
 #LoginGraceTime 2m
 PermitRootLogin prohibit-password
 #StrictModes yes
-MaxAuthTries 3
+MaxAuthTries 4
 #MaxSessions 10

 #PubkeyAuthentication yes
--- a/roles/common/templates/sshd_config_Debian-9.j2
+++ b/roles/common/templates/sshd_config_Debian-9.j2
@ -32,7 +32,7 @@ LogLevel VERBOSE
 #LoginGraceTime 2m
 PermitRootLogin prohibit-password
 #StrictModes yes
-MaxAuthTries 3
+MaxAuthTries 4
 #MaxSessions 10
 # Password based logins are disabled - only public key based logins are allowed.
 AuthenticationMethods publickey
--- a/roles/common/templates/sshd_config_Ubuntu-16.04.j2
+++ b/roles/common/templates/sshd_config_Ubuntu-16.04.j2
@ -70,7 +70,7 @@ PrintLastLog yes
 TCPKeepAlive yes
 #UseLogin no

-MaxAuthTries 3
+MaxAuthTries 4
 #MaxStartups 10:30:60
 #Banner /etc/issue.net

--- a/roles/common/templates/sshd_config_Ubuntu-18.04.j2
+++ b/roles/common/templates/sshd_config_Ubuntu-18.04.j2
@ -31,7 +31,7 @@ LogLevel VERBOSE
 #LoginGraceTime 2m
 PermitRootLogin prohibit-password
 #StrictModes yes
-MaxAuthTries 3
+MaxAuthTries 4
 #MaxSessions 10

 #PubkeyAuthentication yes