3fa6fd216f
The previous work done for RHEL-07-040170 didn't work properly on Ubuntu 16.04 due to the way the /etc/issue.net file is read. The login banner is now deployed to /etc/motd by default to make it work properly for all distributions. This also covers the requirements for RHEL-07-010040. Documentation is included. Implements: blueprint security-rhel7-stig Change-Id: I417449837eaecb311abd3fbcda326deba6643886
558 B
558 B
---id: RHEL-07-040170 status: implemented tag: sshd ---
The tasks in the security role deploy a standard notice and consent
banner into /etc/motd on each server. Ubuntu, CentOS and
Red Hat Enterprise Linux display this banner after each successful login
via ssh or the console.
Deployers can choose a different destination for the banner by setting the following Ansible variable:
security_sshd_banner_file: /etc/motdThe text of the banner file is configurable by editing
files/login_banner.txt in the security role.