An Ansible role that configures OpenSSH based on the latest ssh-audit recommendations.
This role only sets variables for the idiv_biodiversity.ssh.ssh role.
Note: The hardened defaults that this role sets may be different based on the targeted platform/OS/distro due to what its version of OpenSSH supports.
---
# requirements.yml
collections:
- name: idiv_biodiversity.ssh
version: X.Y.Z
...Write a top-level playbook:
---
- name: servers
hosts: servers
roles:
- role: idiv_biodiversity.ssh.ssh_audited
tags:
- ssh
...Define the role dependency in meta/main.yml:
---
dependencies:
- role: idiv_biodiversity.ssh.ssh_audited
tags:
- ssh
...