Adding debian/openssh.sls

diff --git a/debian/openssh.sls b/debian/openssh.sls
new file mode 100644 (file)
index 0000000..41907ae
--- /dev/null
+++ b/debian/openssh.sls
@@ -0,0 +1,33 @@
+sshd_config:
+
+  key-types2:
+    - rsa
+    - dsa
+    - ecdsa
+{%- if salt['grains.get']('osrelease_info')[0] >= 8 %}
+    - ed25519
+{% endif -%}
+
+ssh_config:
+  StrictHostKeyChecking: no
+  ForwardAgent: yes
+  ForwardX11: no
+  RhostsRSAAuthentication: no
+  RSAAuthentication: yes
+  PasswordAuthentication: yes
+  HostbasedAuthentication: no
+  GSSAPIAuthentication: no
+  GSSAPIDelegateCredentials: no
+  BatchMode: 'yes'
+  CheckHostIP: 'yes'
+  AddressFamily: 'any'
+  ConnectTimeout: 0
+  IdentityFile: ["~/.ssh/id_rsa", '~/.ssh/id_dsa']
+  Port: 22
+  Protocol: 2
+  Cipher: '3des'
+  Tunnel: 'no'
+  TunnelDevice: 'any:any'
+  PermitLocalCommand: 'no'
+  VisualHostKey: 'no'
+