ssh
This commit is contained in:
parent
4120ca752b
commit
f2844607f3
7
roles/container/files/link-ptmx.service
Normal file
7
roles/container/files/link-ptmx.service
Normal file
@ -0,0 +1,7 @@
|
|||||||
|
[Unit]
|
||||||
|
Description=Symlink /dev/ptmx for interactive logins
|
||||||
|
|
||||||
|
[Service]
|
||||||
|
Type=oneshot
|
||||||
|
RemainAfterExit=yes
|
||||||
|
ExecStart=/usr/bin/ln -s /dev/pts/ptmx /dev/ptmx
|
@ -1,10 +1,13 @@
|
|||||||
- name: install openssh
|
- name: install openssh
|
||||||
pacman: name=openssh state=present
|
pacman: name=openssh state=present
|
||||||
- name: Write sshd_config
|
- name: Write sshd_config
|
||||||
copy: src=sshd_config dest=/etc/ssh/sshd_config mode=0644
|
template: src=sshd_config.j2 dest=/etc/ssh/sshd_config mode=0644
|
||||||
- name: symlink /dev/pts/ptmx to /dev/ptmx for sshd pty
|
- name: symlink /dev/pts/ptmx to /dev/ptmx for sshd pty
|
||||||
file: src=/dev/pts/ptmx dest=/dev/ptmx state=link
|
file: src=/dev/pts/ptmx dest=/dev/ptmx state=link
|
||||||
- name: tmpfiles.d/ptmx.conf
|
- name: create link-ptmx.service
|
||||||
copy: src=ptmx.conf dest=/etc/tmpfiles.d/ptmx.conf mode=0644
|
copy: src=link-ptmx.service dest=/etc/systemd/system/link-ptmx.service mode=0644
|
||||||
|
- name: enable link-ptmx.service
|
||||||
|
file: src=/etc/systemd/system/link-ptmx.service dest=/etc/systemd/system/multi-user.target.wants/link-ptmx.service state=link
|
||||||
|
|
||||||
- name: start sshd.socket
|
- name: start sshd.socket
|
||||||
service: name=sshd.socket state=started enabled=yes
|
service: name=sshd.socket state=started enabled=yes
|
||||||
|
@ -1,6 +1,11 @@
|
|||||||
Port 22
|
Port 22
|
||||||
|
|
||||||
|
{% if ssh_ldap %}
|
||||||
|
AuthorizedKeysCommand /usr/lib/openssh-ldap-helper/openssh-ldap-helper
|
||||||
|
AuthorizedKeysCommandUser root
|
||||||
|
{% else %}
|
||||||
AuthorizedKeysFile .ssh/authorized_keys
|
AuthorizedKeysFile .ssh/authorized_keys
|
||||||
|
{% endif %}
|
||||||
|
|
||||||
PasswordAuthentication no
|
PasswordAuthentication no
|
||||||
ChallengeResponseAuthentication no
|
ChallengeResponseAuthentication no
|
@ -1 +1,2 @@
|
|||||||
php_extensions: []
|
php_extensions: []
|
||||||
|
ssh_ldap: false
|
||||||
|
Loading…
Reference in New Issue
Block a user