From 3615a84e8441a30f9255353ff5c6d2f9aa0ab18c Mon Sep 17 00:00:00 2001
From: Thomas Schneider <thomas@fsmpi.rwth-aachen.de>
Date: Tue, 20 May 2025 12:47:34 +0200
Subject: [PATCH] =?UTF-8?q?ssh-server:=20Do=20not=20overwrite=20sshd=5Fcon?=
 =?UTF-8?q?fig=20on=20Debian=20=E2=89=A5=20bookworm?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

Configure everything via drop-ins to reduce config file noise.  It is expected
to revert the main sshd_config to distribution defaults when upgrading to
bookworm.
---
 ssh-server/tasks/main.yml | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/ssh-server/tasks/main.yml b/ssh-server/tasks/main.yml
index c547c9a..6b861ee 100644
--- a/ssh-server/tasks/main.yml
+++ b/ssh-server/tasks/main.yml
@@ -31,7 +31,9 @@
     mode: '0644'
     backup: true
     validate: '/usr/sbin/sshd -t -f %s'
-  when: ansible_distribution_major_version|int(default=99) > 10
+  when:
+    - ansible_distribution_major_version|int(default=99) > 10
+    - ansible_distribution_major_version|int(default=99) < 12
   notify:
     - restart sshd
   tags:
-- 
GitLab