From 641851632f5fe10c06991530f5f38c3dc3bb206f Mon Sep 17 00:00:00 2001 From: Niels Abspoel Date: Thu, 26 May 2016 21:57:02 +0200 Subject: [PATCH] add more authentication options --- openssh/files/sshd_config | 2 ++ pillar.example | 2 ++ 2 files changed, 4 insertions(+) diff --git a/openssh/files/sshd_config b/openssh/files/sshd_config index 75df57d..471e031 100644 --- a/openssh/files/sshd_config +++ b/openssh/files/sshd_config @@ -74,6 +74,8 @@ {{ option_default_uncommented('LoginGraceTime', 120) }} {{ option_default_uncommented('PermitRootLogin', 'yes') }} {{ option_default_uncommented('StrictModes', 'yes') }} +{{ option_default_uncommented('MaxAuthTries', '6') }} +{{ option_default_uncommented('MaxSessions', '10') }} {{ option('DSAAuthentication', 'yes') }} {{ option_default_uncommented('RSAAuthentication', 'yes') }} diff --git a/pillar.example b/pillar.example index d678fde..070a400 100644 --- a/pillar.example +++ b/pillar.example @@ -17,6 +17,8 @@ sshd_config: PermitRootLogin: 'yes' PasswordAuthentication: 'no' StrictModes: 'yes' + MaxAuthTries: 6 + MaxSessions: 10 RSAAuthentication: 'yes' PubkeyAuthentication: 'yes' IgnoreRhosts: 'yes'