alanorth/ansible-personal
1
0
Fork 0
Code Issues 4 Pull Requests Projects Releases Wiki Activity
0bad75788d
ansible-personal/roles/common
History
Alan Orth 0bad75788d
roles/common: Add encryption settings to Debian 11 sshd_config 
Mostly based on the ssh-audit policy for OpenSSH 8.4, but with any
algorithms using less than 256 bits removed. NSA's Suite B removed
these long ago, and the new CNSA suite only uses 256 and up.

See: https://github.com/jtesta/ssh-audit/blob/master/src/ssh_audit/policy.py
See: https://en.wikipedia.org/wiki/Commercial_National_Security_Algorithm_Suite
2021-07-24 22:28:59 +03:00
..
defaults roles/common: Add support for fail2ban 2019-10-26 16:36:07 +02:00
files roles/common: Remove 00-persistent-journal.conf 2021-07-21 10:02:33 +03:00
handlers Remove support for Debian 9 and Ubuntu 16.04 2020-07-14 09:45:33 +03:00
tasks roles/common: Add Spamhaus DROP lists to firewalld ipsets 2021-07-21 09:34:51 +03:00
templates roles/common: Add encryption settings to Debian 11 sshd_config 2021-07-24 22:28:59 +03:00