From e882b88697f643b94b7ceb186d0f20e27a4970d8 Mon Sep 17 00:00:00 2001
From: Mischa ter Smitten <mischa@tersmitten.nl>
Date: Thu, 3 Nov 2016 10:20:58 +0100
Subject: [PATCH 1/2] Improved ansible.cfg (#70)

* Add working public private key pair

* Improved ansible_managed setting

* Make use of SSH pipelining
---
 .infra/Freyfile.hcl | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/.infra/Freyfile.hcl b/.infra/Freyfile.hcl
index ca9166d..314d03d 100644
--- a/.infra/Freyfile.hcl
+++ b/.infra/Freyfile.hcl
@@ -10,6 +10,10 @@ global {
     }
     defaults {
       host_key_checking = false
+      ansible_managed = "Ansible managed"
+    }
+    ssh_connection {
+      pipelining = true
     }
   }
 }

From 00a8279e6121e70bde8311de637c2c805c836534 Mon Sep 17 00:00:00 2001
From: Mischa ter Smitten <mischa@tersmitten.nl>
Date: Thu, 3 Nov 2016 10:22:10 +0100
Subject: [PATCH 2/2] Disable UseDNS for sshd (#71)

* Add working public private key pair

* Disable UseDNS for SSHD
---
 .infra/Freyfile.hcl | 11 +++++++++++
 1 file changed, 11 insertions(+)

diff --git a/.infra/Freyfile.hcl b/.infra/Freyfile.hcl
index 314d03d..3528e4e 100644
--- a/.infra/Freyfile.hcl
+++ b/.infra/Freyfile.hcl
@@ -142,10 +142,21 @@ install {
       notify = ["Common | Update timezone"]
     }
 
+    tasks {
+      name       = "Common | Disable UseDNS for SSHD"
+      lineinfile = "dest=/etc/ssh/sshd_config regexp=\"^UseDNS\" line=\"UseDNS no\" state=present"
+      notify     = ["Common | Restart sshd"]
+    }
+
     handlers {
       name    = "Common | Update timezone"
       command = "dpkg-reconfigure --frontend noninteractive tzdata"
     }
+
+    handlers {
+      name    = "Common | Restart sshd"
+      service = "name=ssh state=restarted"
+    }
   }
 }