mirror of
https://github.com/dev-sec/ansible-collection-hardening
synced 2024-11-10 09:14:18 +00:00
update ssh_hardening readme
This commit is contained in:
dev-sec CI
parent
7f51a49265
commit
b705cd95dc
1 changed files with 7 additions and 3 deletions
|
|
@ -46,7 +46,6 @@ For more information, see [this issue](https://github.com/dev-sec/ansible-collec
|
|||
<!-- BEGIN_ANSIBLE_DOCS -->
|
||||
|
||||
## Supported Operating Systems
|
||||
|
||||
- EL
|
||||
- 8, 9
|
||||
- Ubuntu
|
||||
|
|
@ -215,9 +214,9 @@ For more information, see [this issue](https://github.com/dev-sec/ansible-collec
|
|||
- Type: str
|
||||
- Required: no
|
||||
- `ssh_gateway_ports`
|
||||
- Default: `false`
|
||||
- Default: `False`
|
||||
- Description: Set to `false` to disable binding forwarded ports to non-loopback addresses. Set to `true` to force binding on wildcard address. Set to `clientspecified` to allow the client to specify which address to bind to.
|
||||
- Type: bool
|
||||
- Type: raw
|
||||
- Required: no
|
||||
- `ssh_gssapi_delegation`
|
||||
- Default: `false`
|
||||
|
|
@ -404,6 +403,11 @@ For more information, see [this issue](https://github.com/dev-sec/ansible-collec
|
|||
- Description: a list of revoked public keys that the ssh server will always reject, useful to revoke known weak or compromised keys.
|
||||
- Type: list
|
||||
- Required: no
|
||||
- `ssh_server_service_enabled`
|
||||
- Default: `true`
|
||||
- Description: Set to `false` to disable starting sshd at boot.
|
||||
- Type: bool
|
||||
- Required: no
|
||||
- `ssh_trusted_user_ca_keys`
|
||||
- Default: ``
|
||||
- Description: set the trusted certificate authorities public keys used to sign user certificates. Only used if `ssh_trusted_user_ca_keys_file` is set.
|
||||
|
|
|
|||
Loading…
Reference in a new issue