28 lines
598 B
Django/Jinja
28 lines
598 B
Django/Jinja
# {{ ansible_managed }}
|
|
|
|
AcceptEnv LANG LC_*
|
|
Subsystem sftp /usr/lib/openssh/sftp-server
|
|
|
|
# Some settings for security.
|
|
UsePrivilegeSeparation yes
|
|
PermitRootLogin without-password
|
|
PermitEmptyPasswords no
|
|
AllowAgentForwarding no
|
|
AllowTcpForwarding no
|
|
X11Forwarding no
|
|
PermitTunnel no
|
|
|
|
# On containers, we only expect public key-based sessions from ansible.
|
|
PubkeyAuthentication yes
|
|
PasswordAuthentication no
|
|
ChallengeResponseAuthentication no
|
|
KerberosAuthentication no
|
|
GSSAPIAuthentication no
|
|
UsePAM yes
|
|
|
|
# Improve the time that it takes to login.
|
|
PrintMotd no
|
|
PrintLastLog no
|
|
UseDns no
|
|
Banner none
|