diff --git a/defaults/main.yml b/defaults/main.yml index ab5248f..a1669c7 100644 --- a/defaults/main.yml +++ b/defaults/main.yml @@ -27,7 +27,7 @@ use_diffie_hellman_group_exchange_sha256: false use_aes256_ctr: false use_hmac_sha2_512: false -generate_modern_ssh_keys: true +do_not_delete_legacy_ssh_keys: true # version check for this role? submodules_versioncheck: true diff --git a/tasks/main.yml b/tasks/main.yml index caf188c..d25f455 100644 --- a/tasks/main.yml +++ b/tasks/main.yml @@ -43,7 +43,6 @@ - restart ssh when: - generate_ecdsa_too | bool - - generate_modern_ssh_keys | bool - name: Generate new ed25519 ssh host key pair if necessary become: yes @@ -55,7 +54,6 @@ - restart ssh when: - ansible_distribution_release != 'wheezy' - - generate_modern_ssh_keys | bool - name: Remove unwanted host keys become: yes @@ -70,7 +68,7 @@ when: - generate_ecdsa_too | bool - ansible_distribution_release != 'wheezy' - - generate_modern_ssh_keys | bool + - do_not_delete_legacy_ssh_keys | bool - name: Remove unwanted host keys become: yes @@ -86,7 +84,7 @@ when: - not generate_ecdsa_too | bool - ansible_distribution_release != 'wheezy' - - generate_modern_ssh_keys | bool + - do_not_delete_legacy_ssh_keys | bool - name: make sure the correct keys are available file: @@ -102,7 +100,7 @@ when: - not generate_ecdsa_too | bool - ansible_distribution_release != 'wheezy' - - generate_modern_ssh_keys | bool + - do_not_delete_legacy_ssh_keys | bool - name: make sure the correct keys are available except ecdsa file: @@ -117,4 +115,4 @@ when: - generate_ecdsa_too | bool - ansible_distribution_release != 'wheezy' - - generate_modern_ssh_keys | bool + - do_not_delete_legacy_ssh_keys | bool diff --git a/vars/main.yml b/vars/main.yml index c04b1d2..466d2ee 100644 --- a/vars/main.yml +++ b/vars/main.yml @@ -1,3 +1,3 @@ --- -playbook_version_number: 2051 # should be over ninethousand +playbook_version_number: 2052 # should be over ninethousand playbook_version_path: 'role-sshd_chaos-bodensee_github.com.version'