tpiccioli
/
ansible-roles
forked from ISTI-ansible-roles/ansible-roles
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

Fix the sftp chroot configuration.

This commit is contained in:
Andrea Dell'Amico 2019-07-15 18:14:24 +02:00
parent 28583188eb
commit c934734053
1 changed files with 5 additions and 8 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

13
library/roles/sshd_config/templates/sshd_config.j2
View File

@ -96,15 +96,12 @@ AcceptEnv LANG LC_*
UsePAM {{ sshd_use_pam }}
{% if sshd_enable_sftp_subsystem %}
{% if ansible_distribution_file_variety == 'RedHat' %}
Subsystem sftp /usr/libexec/openssh/sftp-server
{% else %}
Subsystem sftp /usr/lib/openssh/sftp-server
{% endif %}
Subsystem sftp internal-sftp
{% if sshd_enable_sftp_jail %}
Match Group {{ sshd_sftp_chroot_match_group }}
ChrootDirectory {{ sshd_sftp_chroot_directory }}
ForceCommand {{ sshd_sftp_force_command }}
Match Group {{ sshd_sftp_chroot_match_group }}
ChrootDirectory {{ sshd_sftp_chroot_directory }}
X11Forwarding no
AllowTcpForwarding no
{% endif %}
{% endif %}