Merge branch 'disable_debian_banner' into 'master'
disable the debian/ubuntu package version from being sent to clients dkg pointed out to riseup that our ssh servers were revealing the package version to clients, which is controlled by the DebianBanner config option. It exists in both Debian and Ubuntu and defaults to 'yes', so we explicitly set it to 'no' in the templates for those distros. See merge request !17
This commit is contained in:
Jerome Charaoui
commit
571373e081
6 changed files with 12 additions and 0 deletions
|
|
@ -83,6 +83,8 @@ TCPKeepAlive yes
|
|||
|
||||
#MaxStartups 10:30:60
|
||||
#Banner /etc/issue.net
|
||||
# do not reveal debian version (default is yes)
|
||||
DebianBanner no
|
||||
|
||||
# Allow client to pass locale environment variables
|
||||
AcceptEnv LANG LC_*
|
||||
|
|
|
|||
|
|
@ -83,6 +83,8 @@ TCPKeepAlive yes
|
|||
|
||||
#MaxStartups 10:30:60
|
||||
#Banner /etc/issue.net
|
||||
# do not reveal debian version (default is yes)
|
||||
DebianBanner no
|
||||
|
||||
# Allow client to pass locale environment variables
|
||||
AcceptEnv LANG LC_*
|
||||
|
|
|
|||
|
|
@ -87,6 +87,8 @@ TCPKeepAlive yes
|
|||
|
||||
#MaxStartups 10:30:60
|
||||
#Banner /etc/issue.net
|
||||
# do not reveal debian version (default is yes)
|
||||
DebianBanner no
|
||||
|
||||
# Allow client to pass locale environment variables
|
||||
AcceptEnv LANG LC_*
|
||||
|
|
|
|||
|
|
@ -86,6 +86,8 @@ TCPKeepAlive yes
|
|||
|
||||
#MaxStartups 10:30:60
|
||||
#Banner /etc/issue.net
|
||||
# do not reveal debian version (default is yes)
|
||||
DebianBanner no
|
||||
|
||||
# Allow client to pass locale environment variables
|
||||
AcceptEnv LANG LC_*
|
||||
|
|
|
|||
|
|
@ -87,6 +87,8 @@ TCPKeepAlive yes
|
|||
|
||||
#MaxStartups 10:30:60
|
||||
#Banner /etc/issue.net
|
||||
# do not reveal debian version (default is yes)
|
||||
DebianBanner no
|
||||
|
||||
# Allow client to pass locale environment variables
|
||||
AcceptEnv LANG LC_*
|
||||
|
|
|
|||
|
|
@ -88,6 +88,8 @@ KeepAlive yes
|
|||
|
||||
#MaxStartups 10:30:60
|
||||
#Banner /etc/issue.net
|
||||
# do not reveal debian version (default is yes)
|
||||
DebianBanner no
|
||||
#ReverseMappingCheck yes
|
||||
|
||||
Subsystem sftp <%= (s=scope.lookupvar('::sshd::sftp_subsystem')).empty? ? '/usr/lib/openssh/sftp-server' : s %>
|
||||
|
|
|
|||
Loading…
Reference in a new issue