From 561b55a828e860bef6257e43d189873dbe67bfa6 Mon Sep 17 00:00:00 2001
From: Lars Beckers <lars.beckers@rwth-aachen.de>
Date: Fri, 19 Jul 2019 16:33:56 +0200
Subject: [PATCH] ssh-server: remove deprecated variable from config (buster)

---
 ssh-server/templates/sshd_config_stretch.j2 | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/ssh-server/templates/sshd_config_stretch.j2 b/ssh-server/templates/sshd_config_stretch.j2
index 2a7a9bc..da568b9 100644
--- a/ssh-server/templates/sshd_config_stretch.j2
+++ b/ssh-server/templates/sshd_config_stretch.j2
@@ -15,8 +15,11 @@ MACs hmac-sha2-512-etm@openssh.com,hmac-sha2-256-etm@openssh.com,umac-128-etm@op
 # HostKeys for protocol version 2
 HostKey /etc/ssh/ssh_host_rsa_key
 HostKey /etc/ssh/ssh_host_ed25519_key
+{# deprecated option in buster #}
+{% if ansible_distribution_major_version|int < 10 %}
 #Privilege Separation is turned on for security
 UsePrivilegeSeparation yes
+{% endif %}
 
 # Logging
 SyslogFacility AUTH
-- 
GitLab