alanorth/ansible-personal
1
0
Fork 0
Code Issues 4 Pull Requests Projects Releases Wiki Activity
38c333045b
ansible-personal/roles/common/templates
History
Alan Orth 0bad75788d
roles/common: Add encryption settings to Debian 11 sshd_config 
Mostly based on the ssh-audit policy for OpenSSH 8.4, but with any
algorithms using less than 256 bits removed. NSA's Suite B removed
these long ago, and the new CNSA suite only uses 256 and up.

See: https://github.com/jtesta/ssh-audit/blob/master/src/ssh_audit/policy.py
See: https://en.wikipedia.org/wiki/Commercial_National_Security_Algorithm_Suite
2021-07-24 22:28:59 +03:00
..
etc roles/common: Remove storage-specific tweaks 2020-07-14 09:10:07 +03:00
public.xml.j2 roles/common: Add Spamhaus DROP lists to firewalld ipsets 2021-07-21 09:34:51 +03:00
rc.local_Ubuntu.j2 roles/common: Remove I/O scheduler logic from rc.local 2015-03-15 17:40:54 +03:00
security.sources.list.j2 roles/common: Update security.sources.list for cron-apt 2019-07-06 21:16:19 +03:00
sources.list.j2 roles/common: Remove buster-backports 2019-10-18 22:56:52 +03:00
sshd_config_Debian-10.j2 roles/common: Increase ssh MaxAuthTries from 3 to 4 2019-09-15 15:17:00 +03:00
sshd_config_Debian-11.j2 roles/common: Add encryption settings to Debian 11 sshd_config 2021-07-24 22:28:59 +03:00
sshd_config_Ubuntu-18.04.j2 roles/common: Increase ssh MaxAuthTries from 3 to 4 2019-09-15 15:17:00 +03:00
sshd_config_Ubuntu-20.04.j2 roles/common: Update KexAlgorithms in Ubuntu 20.04 sshd_config 2021-07-22 12:57:31 +03:00
sysctl_Debian.j2 roles/common: Add sysctl template for Debian hosts 2015-08-23 00:12:17 +03:00
sysctl_Ubuntu.j2 roles/common: Remove logic for TCP congestion avoidance on early kernels in sysctl 2015-03-15 17:25:33 +03:00
tarsnap_sources.list.j2 roles/common: Use stable tarsnap 2019-09-13 22:14:49 +03:00