From 4cde3d268b4ad27a405d9f37e30c7d3b8fd8105c Mon Sep 17 00:00:00 2001 From: Diana-Maria Dumitru Date: Wed, 31 Jan 2024 08:20:59 +0200 Subject: [PATCH] Commenting variables that may affect the ssh access Signed-off-by: Diana-Maria Dumitru --- defaults/main.yml | 8 ++++---- 1 file changed, 4 insertions(+), 4 deletions(-) diff --git a/defaults/main.yml b/defaults/main.yml index ba16c8b..cee463e 100644 --- a/defaults/main.yml +++ b/defaults/main.yml @@ -798,26 +798,26 @@ amzn2023cis_sshd: # If an USER@HOST format will be used, the specified user will be allowed only on that particular host. # The allow/deny directives process order: DenyUsers, AllowUsers, DenyGroups, AllowGroups. # For more info, see https://linux.die.net/man/5/sshd_config - allowusers: + # allowusers: # This variable, if specified, configures a list of GROUP name patterns, separated by spaces, to allow SSH access # for users whose primary group or supplementary group list matches one of the patterns. This is done # by setting the value of `AllowGroups` option in `/etc/ssh/sshd_config` file. # The allow/deny directives process order: DenyUsers, AllowUsers, DenyGroups, AllowGroups. # For more info, https://linux.die.net/man/5/sshd_config - allowgroups: systems dba + # allowgroups: systems dba # This variable, if specified, configures a list of USER name patterns, separated by spaces, to prevent SSH access # for users whose user name matches one of the patterns. This is done # by setting the value of `DenyUsers` option in `/etc/ssh/sshd_config` file. # If an USER@HOST format will be used, the specified user will be restricted only on that particular host. # The allow/deny directives process order: DenyUsers, AllowUsers, DenyGroups, AllowGroups. # For more info, see https://linux.die.net/man/5/sshd_config - denyusers: + # denyusers: # This variable, if specified, configures a list of GROUP name patterns, separated by spaces, to prevent SSH access # for users whose primary group or supplementary group list matches one of the patterns. This is done # by setting the value of `DenyGroups` option in `/etc/ssh/sshd_config` file. # The allow/deny directives process order: DenyUsers, AllowUsers, DenyGroups, AllowGroups. # For more info, see https://linux.die.net/man/5/sshd_config - denygroups: + # denygroups: ## Control 4.2.5 - Ensure SSH LogLevel is appropriate # This variable refers to the loglevel used for ssh.