# SSH Configuration - Managed by Ansible Port {{ ssh_port }} Protocol 2 # Authentication PermitRootLogin {{ ssh_permit_root_login | ternary('yes', 'no') }} PasswordAuthentication {{ ssh_password_authentication | ternary('yes', 'no') }} PubkeyAuthentication yes AuthorizedKeysFile .ssh/authorized_keys MaxAuthTries {{ ssh_max_auth_tries }} # Connection settings ClientAliveInterval {{ ssh_client_alive_interval }} ClientAliveCountMax {{ ssh_client_alive_count_max }} MaxSessions 10 MaxStartups 10:30:60 # Security settings PermitEmptyPasswords no ChallengeResponseAuthentication no UsePAM yes X11Forwarding no PrintMotd no AcceptEnv LANG LC_* Subsystem sftp /usr/lib/openssh/sftp-server