ansible-collection-hardening icon indicating copy to clipboard operation
ansible-collection-hardening copied to clipboard

Published 20 hours ago verified publisher icon dev-sec

Disabled ssh.socket causes failure of ubuntu upgrade to 24.04

Open northys opened this issue 1 year ago • 0 comments

Description

Disabled ssh.socket from https://github.com/dev-sec/ansible-collection-hardening/pull/769 caused upgrade of Ubuntu from 22.04 to 24.04 to fail.

Reproduction steps

1) I have server with 22.04 with ssh hardening applied
2) I upgraded the server by `do-release-upgrade`
3) It failed on openssh-server package configuration which expects `ssh.socket` to be activated

Current Behavior

ssh.socket is disabled by the role by default without an option to decide if I want it.

Expected Behavior

I would like to disable this configuration using some option so I can upgrade the servers and disable the socket again easilly.

OS / Environment

Ubuntu 22.04

Ansible Version

-

Collection Version

10.0.0

Additional information

No response

northys avatar Sep 13 '24 16:09 northys