mirror of
https://github.com/Security-Onion-Solutions/securityonion.git
synced 2025-12-08 10:12:53 +01:00
25 lines
588 B
Plaintext
25 lines
588 B
Plaintext
{% from "idh/openssh/map.jinja" import openssh_map with context %}
|
|
|
|
include:
|
|
- idh.openssh
|
|
|
|
{% if grains.os_family == 'RedHat' %}
|
|
idh_sshd_selinux:
|
|
selinux.port_policy_present:
|
|
- port: {{ openssh_map.config.port }}
|
|
- protocol: tcp
|
|
- sel_type: ssh_port_t
|
|
- prereq:
|
|
- file: openssh_config
|
|
- require:
|
|
- pkg: python_selinux_mgmt_tools
|
|
{% endif %}
|
|
|
|
openssh_config:
|
|
file.replace:
|
|
- name: {{ openssh_map.conf }}
|
|
- pattern: '(^|^#)Port \d+$'
|
|
- repl: 'Port {{ openssh_map.config.port }}'
|
|
- watch_in:
|
|
- service: {{ openssh_map.service }}
|