Home Explore Help
Register Sign In
opuppet
/
module-sshd
6
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Browse Source

disable autossh control port

this is important to make it easier to guess the ssh port from the
central server.

we rely on ServerAliveInterval instead to reconnect when we lose the
server.

this was unintentionally removed in november 2012 in the isuma-autossh
package, saying it was "not supported everywhere" and due to some
confusion about the defaults (defaults are to *enable* the port). see
commit ec0ebdd9533a29ee4f62f9fbb84ee9e80219ef84 in there.
Antoine Beaupré 9 years ago
parent
7b99c89edf
commit
6ea0beb114
1 changed files with 1 additions and 1 deletions
Split View Show Diff Stats
  1. 1 1
      manifests/autossh.pp

+ 1 - 1
manifests/autossh.pp
View File 

@@ -23,7 +23,7 @@ class sshd::autossh($host,
 
       source => 'puppet:///modules/sshd/autossh.init.d';
 
     '/etc/default/autossh':
 
       mode    => '0444',
 
-      content => "USER=$user\nPIDFILE=$pidfile\nDAEMON_ARGS='-f -o ServerAliveInterval=15 -o ServerAliveCountMax=4 -q -N -R $port_ensure:localhost:22 $remote_user_ensure@$host'\n";
 
+      content => "USER=$user\nPIDFILE=$pidfile\nDAEMON_ARGS='-M0 -f -o ServerAliveInterval=15 -o ServerAliveCountMax=4 -q -N -R $port_ensure:localhost:22 $remote_user_ensure@$host'\n";
 
   }
 
   package { 'autossh':
 
     ensure => present,