16 lines
387 B
YAML
16 lines
387 B
YAML
---
|
|
- name: Fix ssh Ciphers
|
|
lineinfile:
|
|
dest: /etc/ssh/sshd_config
|
|
insertafter: '#ServerKeyBits'
|
|
line: "{{ item }}"
|
|
# backrefs: yes
|
|
with_items:
|
|
- 'Ciphers aes256-ctr,aes192-ctr,aes128-ctr'
|
|
- 'MACs hmac-sha1,hmac-ripemd160'
|
|
notify:
|
|
- restart sshd
|
|
|
|
- name: Ensure sshd is running and enabled to start at boot
|
|
service: name=sshd state=started enabled=yes
|