While I draft an easy prompting for complex YubiKey SSH MatchHost (not yet git-pushed), I’ve got this OpenSSH configuration tool based on user-prompting of many other OpenSSH-related configuration settings into sshd.conf/ssh.conf file using /etc/ssh[d].conf.d directory holding many setting files.
Each setting file has a full comment page on how to use its keyword, a commented-out default setting, and a CISecurity-recommended setting.
Each setting files are named (via numeric prefix) to be in execution order, which enables for easier thinking of “how deep” it goes into the SSH protocol.
As a default, the config files are written into a local build/etc/ssh subdirectories for perusal before being implemented manually into /etc
Each setting file has a full comment page on how to use its keyword, a commented-out default setting, and a CISecurity-recommended setting.
Each setting files are named (via numeric prefix) to be in execution order, which enables for easier thinking of “how deep” it goes into the SSH protocol.
As a default, the config files are written into a local build/etc/ssh subdirectories for perusal before being implemented manually into /etc
Plus, I code-review OpenSSH regularly.
https://github.com/egberts/easy-admin/tree/main/490-net-ssh