diff --git a/README.md b/README.md
index 9ffa9eb..40daaca 100644
--- a/README.md
+++ b/README.md
@@ -106,6 +106,7 @@ There is also the ``l3d_users__ssh_login`` variable which only supports ``name``
 | ``l3d_users__sshd_manage_macs`` | ``true`` | Manage Used MACs |
 | ``l3d_users__sshd_macs`` | ``['hmac-sha2-512-etm@openssh.com', 'hmac-sha2-256-etm@openssh.com', 'hmac-sha2-512']`` | Used MACs |
 | ``l3d_users__sshd_xforwarding`` |``true`` | Enable X-Forwarding |
+| ``l3d_users__server_key_mode`` | ``0600`` | Mode of SSHD Server keys in Filesystem |
 | ``l3d_users__bashrc`` | ``true`` | Configure bashrc |
 | ``l3d_users__root_bashrc`` | ``true`` | Set bashrc for root |
 | ``l3d_users__dotfiles__bash_completion_enabled`` | ``true`` | Enable bash completion |
diff --git a/roles/sshd/README.md b/roles/sshd/README.md
index eed8fcc..8e871a1 100644
--- a/roles/sshd/README.md
+++ b/roles/sshd/README.md
@@ -53,6 +53,7 @@ There is a third directory-variable called ``l3d_users__ssh_login: []`` which on
 | ``l3d_users__sshd_manage_macs`` | ``true`` | Manage Used MACs |
 | ``l3d_users__sshd_macs`` | ``['hmac-sha2-512-etm@openssh.com', 'hmac-sha2-256-etm@openssh.com', 'hmac-sha2-512']`` | Used MACs |
 | ``l3d_users__sshd_xforwarding`` |``true`` | Enable X-Forwarding |
+| ``l3d_users__server_key_mode`` | ``0600`` | Mode of server keys in Filesystem |
 | ``submodules_versioncheck`` | ``false`` | Optionaly enable simple versionscheck of this role |
 
  Example Playbook
diff --git a/roles/sshd/defaults/main.yml b/roles/sshd/defaults/main.yml
index 8a14572..938ab9c 100644
--- a/roles/sshd/defaults/main.yml
+++ b/roles/sshd/defaults/main.yml
@@ -92,5 +92,7 @@ l3d_users__sshd_macs:
 
 l3d_users__sshd_xforwarding: true
 
+l3d_users__server_key_mode: '0600'
+
 # run simple versionscheck
 submodules_versioncheck: false
diff --git a/roles/sshd/vars/main.yml b/roles/sshd/vars/main.yml
index e74b22d..7c9b8b4 100644
--- a/roles/sshd/vars/main.yml
+++ b/roles/sshd/vars/main.yml
@@ -1,5 +1,5 @@
 ---
-playbook_version_number: 7
+playbook_version_number: 8
 playbook_version_path: 'l3d.users.sshd.version'
 
 l3d_users_sshd__service_var_path: