Add sshd conf to accept only NCSA-specific IPs when ncsa_security is enabled

Jess Haneyrequested to merge
SECURITY-1719/ssh-ncsa-only into main

This MR is in response to IRST's request to have "defense in depth controls" on the local Radiant VMs in addition to the OpenStack security groups by only allowing ssh from NCSA IPs. This functionality is limited to clusters that have ncsa_security enabled and will allow ssh from qualys and any IPs in the NCSA space (141.142.0.0/16)

Merge request reports

Contact help@ncsa.illinois.edu with questions regarding this site. | All rights reserved. ©2024 Board of Trustees of the University of Illinois. | Web Privacy Notice