fix ssh.socket killmode
This commit is contained in:
parent
b20c03cea7
commit
cca6645253
0
roles/container/files/ssh_known_hosts
Normal file
0
roles/container/files/ssh_known_hosts
Normal file
2
roles/container/files/sshd-killmode.conf
Normal file
2
roles/container/files/sshd-killmode.conf
Normal file
@ -0,0 +1,2 @@
|
|||||||
|
[Service]
|
||||||
|
KillMode=process
|
@ -1,5 +1,6 @@
|
|||||||
- name: install openssh
|
- name: install openssh
|
||||||
pacman: name=openssh state=present
|
pacman: name=openssh state=present
|
||||||
|
|
||||||
- name: Write sshd_config
|
- name: Write sshd_config
|
||||||
template: src=sshd_config.j2 dest=/etc/ssh/sshd_config mode=0644
|
template: src=sshd_config.j2 dest=/etc/ssh/sshd_config mode=0644
|
||||||
- name: Write ssh_config
|
- name: Write ssh_config
|
||||||
@ -8,7 +9,15 @@
|
|||||||
copy: src=ssh_moduli dest=/etc/ssh/moduli mode=0644
|
copy: src=ssh_moduli dest=/etc/ssh/moduli mode=0644
|
||||||
- name: create link-ptmx.service
|
- name: create link-ptmx.service
|
||||||
copy: src=link-ptmx.service dest=/etc/systemd/system/link-ptmx.service mode=0644
|
copy: src=link-ptmx.service dest=/etc/systemd/system/link-ptmx.service mode=0644
|
||||||
|
|
||||||
- name: enable link-ptmx.service
|
- name: enable link-ptmx.service
|
||||||
file: src=/etc/systemd/system/link-ptmx.service dest=/etc/systemd/system/multi-user.target.wants/link-ptmx.service state=link
|
file: src=/etc/systemd/system/link-ptmx.service dest=/etc/systemd/system/multi-user.target.wants/link-ptmx.service state=link
|
||||||
|
|
||||||
- name: start sshd.socket
|
- name: start sshd.socket
|
||||||
service: name=sshd.socket state=started enabled=yes
|
service: name=sshd.socket state=started enabled=yes
|
||||||
|
|
||||||
|
- name: sshd.service.d
|
||||||
|
file: path=/etc/systemd/system/sshd.service.d/ state=directory
|
||||||
|
- name: ssh service KillMode
|
||||||
|
copy: src=sshd-killmode.conf dest=/etc/systemd/system/sshd.service.d/killmode.conf
|
||||||
|
notify: Reload systemd
|
||||||
|
Loading…
Reference in New Issue
Block a user