From f4c97a9a0435527f289179fecb3b9c1e801576a0 Mon Sep 17 00:00:00 2001
From: friedrich goerz <friedrich.goerz@netgo.de>
Date: Wed, 13 Apr 2022 12:48:05 +0200
Subject: [PATCH] DEV-432: ansible stuff to change ssh ciphers on serverside +
 added new ssh key for fgoerz

---
 roles/common/tasks/main.yml                   | 10 ++++++++++
 users/friedrich.goerz/ssh.pub                 |  2 +-
 users/outdated/friedrich.goerz.2022.04.13.pub |  1 +
 3 files changed, 12 insertions(+), 1 deletion(-)
 create mode 100644 users/outdated/friedrich.goerz.2022.04.13.pub

diff --git a/roles/common/tasks/main.yml b/roles/common/tasks/main.yml
index 116da64..4d9d840 100644
--- a/roles/common/tasks/main.yml
+++ b/roles/common/tasks/main.yml
@@ -268,3 +268,13 @@
     state: present
   tags:
     - config
+
+- name: "configure ssh_hardening"
+  include_role:
+    # include role from collection called 'devsec'
+    name: devsec.hardening.ssh_hardening
+    apply:
+      tags:
+        - ssh_hardening
+  tags:
+    - ssh_hardening
diff --git a/users/friedrich.goerz/ssh.pub b/users/friedrich.goerz/ssh.pub
index dffa95e..e6af9a3 100644
--- a/users/friedrich.goerz/ssh.pub
+++ b/users/friedrich.goerz/ssh.pub
@@ -1 +1 @@
-ecdsa-sha2-nistp256 AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAABBBFRlmqgkIJxBC45cbVX25P1Uam/+Ct7XFvgMm60TDOWkQiTuVp5vd1sHq2HCRRfGxPrsKmwSQS5wMYIjeiclTag= friedrich.goerz@netgo.de
+ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIGYq47r8Bm7W4fhh/hsj63iPxcoIii2TD9+0RLNOPF1g friedrich@friedrich-HP-ZBook
diff --git a/users/outdated/friedrich.goerz.2022.04.13.pub b/users/outdated/friedrich.goerz.2022.04.13.pub
new file mode 100644
index 0000000..dffa95e
--- /dev/null
+++ b/users/outdated/friedrich.goerz.2022.04.13.pub
@@ -0,0 +1 @@
+ecdsa-sha2-nistp256 AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAABBBFRlmqgkIJxBC45cbVX25P1Uam/+Ct7XFvgMm60TDOWkQiTuVp5vd1sHq2HCRRfGxPrsKmwSQS5wMYIjeiclTag= friedrich.goerz@netgo.de