Stricter sshd config

This commit is contained in:
Pierre Ozoux 2017-04-11 15:09:30 +01:00 committed by GitHub
parent e76505cda8
commit b0440ddb79

View file

@ -1,6 +1,17 @@
#cloud-config
write_files:
- path: /etc/ssh/sshd_config
permissions: 0600
owner: root:root
content: |
# Use most defaults for sshd configuration.
UsePrivilegeSeparation sandbox
Subsystem sftp internal-sftp
PermitRootLogin no
AllowUsers core
PasswordAuthentication no
ChallengeResponseAuthentication no
- path: /etc/sysctl.d/libresh.conf
permissions: 0644
owner: root