From b3110a67e5fb8ddc512da5f8863c6e0ab2c38d5e Mon Sep 17 00:00:00 2001 From: Kevin Carter Date: Wed, 24 Feb 2016 15:06:36 -0600 Subject: [PATCH] Removed sshd_config file This file is an oversight and should not be here. The file is adding the option "UseDNS no" to the base config and while this is an option that could be set, this is not something that this role needs or should be doing. This issue was pointed out in the course of Bug: #1549379 being worked on. Change-Id: I4c184b0967d67e431b5b4e33172522c49459a3eb Signed-off-by: Kevin Carter --- files/sshd_config | 43 -------------------------------------- tasks/repo_pre_install.yml | 11 ---------- 2 files changed, 54 deletions(-) delete mode 100644 files/sshd_config diff --git a/files/sshd_config b/files/sshd_config deleted file mode 100644 index 78d32b5..0000000 --- a/files/sshd_config +++ /dev/null @@ -1,43 +0,0 @@ -Port 22 -Protocol 2 -HostKey /etc/ssh/ssh_host_rsa_key -HostKey /etc/ssh/ssh_host_dsa_key -HostKey /etc/ssh/ssh_host_ecdsa_key -HostKey /etc/ssh/ssh_host_ed25519_key -UsePrivilegeSeparation yes - -KeyRegenerationInterval 3600 -ServerKeyBits 1024 - -SyslogFacility AUTH -LogLevel INFO - -LoginGraceTime 120 -PermitRootLogin yes -StrictModes yes - -RSAAuthentication yes -PubkeyAuthentication yes - -IgnoreRhosts yes -RhostsRSAAuthentication no -HostbasedAuthentication no - -PermitEmptyPasswords no - -ChallengeResponseAuthentication no - -PasswordAuthentication no - -X11Forwarding yes -X11DisplayOffset 10 -PrintMotd no -PrintLastLog yes -TCPKeepAlive yes - -AcceptEnv LANG LC_* - -Subsystem sftp /usr/lib/openssh/sftp-server - -UsePAM yes -UseDNS no diff --git a/tasks/repo_pre_install.yml b/tasks/repo_pre_install.yml index 6bc4b3f..309d9fc 100644 --- a/tasks/repo_pre_install.yml +++ b/tasks/repo_pre_install.yml @@ -13,17 +13,6 @@ # See the License for the specific language governing permissions and # limitations under the License. -- name: Ensure ssh config - copy: - src: "{{ item.src }}" - dest: "{{ item.dest }}" - with_items: - - { src: "sshd_config", dest: "/etc/ssh/sshd_config" } - notify: - - reload ssh - tags: - - repo-ssh - - name: Drop rsyncd configuration file(s) copy: src: "{{ item.src }}"