ricsanfre.security

Overview Versions Insights

Ansible Role: Security

CI

Security hardening tasks on Linux.

  • SSH access hardening

Requirements

None.

Role Variables

Available variables are listed below along with default values (see defaults\main.yaml)

Security SSH security hardened settings disable the login/password access (only access through SSH keys are allowed), disable root login and others.

security_ssh_password_authentication: "no" security_ssh_permit_root_login: "no" security_ssh_usedns: "no" security_ssh_permit_empty_password: "no" security_ssh_challenge_response_auth: "no" security_ssh_gss_api_authentication: "no" security_ssh_x11_forwarding: "no"

Dependencies

None

Example Playbooks

Apply default rules

Install and configure a firewall on a host with default rules

- hosts: server
  roles:
    - ricsanfre.security
About

Security hardening role

role security ssh system
Install
ansible-galaxy install ricsanfre.security
GitHub repository
1 stars
1 forks
0 open issues
License
Unknown
Downloads
10.3k
Owner
Ricardo Sanchez
Telecom engineer.