projects
/
noc.git
/ commitdiff
commit
grep
author
committer
pickaxe
?
search:
re
summary
|
shortlog
|
log
|
commit
| commitdiff |
tree
raw
|
patch
|
inline
| side by side (parent:
519d72b
)
tuer: Add sftp support
author
nicoo
<nicoo@realraum.at>
Sun, 20 May 2018 23:23:09 +0000
(
01:23
+0200)
committer
nicoo
<nicoo@realraum.at>
Sun, 20 May 2018 23:23:09 +0000
(
01:23
+0200)
ansible/tuer.yml
patch
|
blob
|
history
diff --git
a/ansible/tuer.yml
b/ansible/tuer.yml
index
f5694b2
..
853a0cf
100644
(file)
--- a/
ansible/tuer.yml
+++ b/
ansible/tuer.yml
@@
-66,6
+66,7
@@
- git
- kmod-usb-acm
- openssh-server
- git
- kmod-usb-acm
- openssh-server
+ - openssh-sftp-server
- screen
- sudo
- usbutils
- screen
- sudo
- usbutils
@@
-91,7
+92,7
@@
file: "{{ playbook_dir }}/files/tuer/update-keys-from-stdin.sh"
/etc/ssh/sshd_config:
file: "{{ playbook_dir }}/files/tuer/update-keys-from-stdin.sh"
/etc/ssh/sshd_config:
- content: |-
+ content: |
Port 22000
AllowUsers root tuerctl tuergit
Port 22000
AllowUsers root tuerctl tuergit
@@
-103,11
+104,13
@@
X11Forwarding no
UsePrivilegeSeparation sandbox
X11Forwarding no
UsePrivilegeSeparation sandbox
+ Subsystem sftp /usr/libexec/sftp-server
+
Match User tuerctl
AuthorizedKeysFile /dev/null
AuthorizedKeysCommand /usr/local/bin/authorized_keys.sh
AuthorizedKeysCommandUser tuergit
Match User tuerctl
AuthorizedKeysFile /dev/null
AuthorizedKeysCommand /usr/local/bin/authorized_keys.sh
AuthorizedKeysCommandUser tuergit
-
+
/etc/ssh/authorized_keys.d/root:
content: |-
/etc/ssh/authorized_keys.d/root:
content: |-