opuppet/module-sshd
5
0
Fork 0
Code Issues Pull requests Releases Wiki Activity
148 commits 2 branches 0 tags 297 KiB
Commit graph

148 commits

This branch
This branch
All branches
Author SHA1 Message Date
intrigeri
456e42b035 Simplify by using the config_file definition. 2010-10-04 22:03:49 +02:00
intrigeri
b9a8b7b3df Add template for Debian Squeeze. 2010-10-03 19:56:48 +02:00
intrigeri
0615dc635c Actually allow enabling ChallengeResponseAuthentication on Debian Lenny. 2010-10-03 19:56:04 +02:00
Micah Anderson
6b660a56a7 update nagios check_command to check ssh port. it was using ssh_port, it should be 'check_ssh_port' 2010-02-21 14:01:35 -05:00
Micah Anderson
739c9d8e0e Merge remote branch 'lavamind/master' 2009-12-27 16:27:20 -05:00
Micah Anderson
ea1a34bd79 update comments to include information about how to use the nagios 
checks and the pre-requirements
 2009-12-21 15:00:10 -05:00
Micah Anderson
6b602886ef fix the comments section so that the include isn't misleading. if you 
use 'include sshd::debian', then none of the variables are set, and you
will fail to parse the templates
 2009-12-19 03:30:16 -05:00
Jerome Charaoui
3c21e594e6 remove fqdn from nagios service description (hostname is used in the internal nagios_service name) 2009-12-18 14:38:01 -05:00
mh
edcd0859b1 make key removal a bit easier 2009-12-18 19:06:43 +01:00
mh
0f281c8d4d enable that ssh auth-keys can be removed 2009-12-18 18:36:05 +01:00
mh
1d595dd34c false != 'false' 2009-12-11 09:45:35 +01:00
mh
caccb4deb5 set protocol 2 for centos, required. 2009-12-11 09:35:34 +01:00
mh
dac25a5c68 require class instead of requiring packages 2009-12-10 23:49:32 +01:00
mh
5bdeab5848 re-add shorewall in rule :/ 2009-12-10 23:45:12 +01:00
mh
217a4e2566 undef or '' as default 2009-12-10 23:34:57 +01:00
mh
bdf7bd334e merged with riseup module, various cleaning up 2009-12-10 23:15:07 +01:00
mh
81063ee57b move plugin directory to fit new 0.25 style 2009-12-07 16:04:29 -05:00
mh
384b1466ea switch to new lsb way 2009-12-07 16:04:26 -05:00
mh
c8e0ef9ede better set the variables in the init 2009-12-07 16:04:22 -05:00
mh
37736c895f upstream capability, fix new lines 
- added new upstream options
- don't put new lines for control statements
 2009-12-07 16:03:57 -05:00
mh
5e20e07d1f factor everything into its own file 2009-12-07 16:03:55 -05:00
mh
57eae8bc84 disable gssapi 2009-12-07 16:03:52 -05:00
mh
62ba8525f1 do not quote default! 2009-12-07 16:03:49 -05:00
mh
e3cb846f32 try if setting a target fixes the problem 2009-12-07 16:03:46 -05:00
mh
d92fa75793 changed target behaviour 2009-12-07 16:03:42 -05:00
mh
6bf0a1bbc7 adjusted to new usage of booleans 2009-12-07 16:03:39 -05:00
mh
9e36776ee6 adjusted to new usage of booleans 2009-12-07 16:03:34 -05:00
Micah Anderson
6601c38296 Revert "fix missing curly brace" -- this was actually correct 
This reverts commit d4fba70a51.
 2009-10-01 18:30:02 -04:00
Micah Anderson
d4fba70a51 fix missing curly brace 2009-09-29 15:32:36 -04:00
Micah Anderson
2c3f632e90 fix previous change which took the client/server packages out of the linux class 
and instead allow for a version change through an if variable. thanks ng!
 2009-07-09 12:15:10 -04:00
Micah Anderson
d86ec97ab0 same problem with the openssh-clients in the sshd::client::linux class 2009-07-07 21:04:23 -04:00
Micah Anderson
55e0a6178b the sshd::linux class cannot also define the openssh package 
if we are to have the possibility of potentially overriding the version number it must be done in the base class
 2009-07-07 21:02:31 -04:00
Micah Anderson
93e2f4d4c0 Template out the possibility of specifying the key word 'off' to the 
$sshd_port parameter, which simply puts a comment in front of that
option, rather than specifying it.
 2009-07-07 20:55:13 -04:00
Micah Anderson
dfebe2a9b5 make it possible to override what version of openssh-server and client are installed by providing the variable $sshd_ensure_version, which defaults to the previous value of present when not specified 2009-07-07 20:55:01 -04:00
Micah Anderson
f44776cbbf replace the sshd_additional_options variable with two, one called 
sshd_head_additional_options and one called sshd_tail_additional_options.
the first puts the value at the beginning of the file, and the second at
the end.

This is necessary due to some option ordering requiring things to be
before others
 2009-07-07 20:52:40 -04:00
Micah Anderson
60eb9319d3 removed the facter/sshkeys.rb, this is handled by facter now days, so it is no longer necessary to provide it 2009-07-02 13:00:42 -04:00
Micah Anderson
5161c4332a Merge commit 'anarcat/master' 2008-12-07 12:17:12 -05:00
Micah Anderson
78938cde2a Fix location of default sftp-server on Debian, and uncomment the sftp 
configuration line to get the sshd_config file defaults to be more
like the standard shipped defaults from Debian
 2008-12-07 12:15:41 -05:00
Micah Anderson
667d7e30df Merge commit 'ng/master' 
Conflicts:

	manifests/init.pp

Conflict due to indentation formatting differences
 2008-12-07 12:12:33 -05:00
Antoine Beaupre
461bc0c2f0 emit a warning instead of info when the ssh server doesn't have an sshrsa key 
also export the key based on ip address, removing all warnings
 2008-12-06 19:12:17 -05:00
Antoine Beaupre
992e6e0f07 use the proper fact to export ssh keys. See http://projects.reductivelabs.com/issues/show/1799#note-1 2008-12-06 18:39:53 -05:00
Antoine Beaupre
fa072188dc make saner defaults for authorized_keys 
note that this removes the user => root default
 2008-12-02 16:56:19 -05:00
mh
ec2501d07c unified naming 
git-svn-id: https://svn/ipuppet/trunk/modules/sshd@2674 d66ca3ae-40d7-4aa7-90d4-87d79ca94279
 2008-11-07 20:40:24 +00:00
mh
7103d6bfcc check ssh with nagios 
git-svn-id: https://svn/ipuppet/trunk/modules/sshd@2672 d66ca3ae-40d7-4aa7-90d4-87d79ca94279
 2008-11-07 20:19:31 +00:00
Micah Anderson
6fb10939af In debian, the daemon is run as 'sshd', but the initscript is 
/etc/init.d/ssh, which means that name needs to be set to 'ssh', and
pattern needs to be set to 'sshd', and then we set the hassstatus and
hasrestart depending on the lsbdistcodename
 2008-10-27 17:00:39 -04:00
Micah Anderson
49d840dab4 lsbdistcodename is the proper variable to check for if the system is debian or lenny 2008-10-27 16:20:26 -04:00
Micah Anderson
1f25b213e1 Debian's sshd config typically has PrintMotd no set because its already printed via PAM. 
Without it set, it is defaulted to 'yes', which results in the MOTD being printed twice, so
we return the Debian default configuration in this commit
 2008-10-27 15:45:11 -04:00
Micah Anderson
98ddbe8ef5 change the debian 'hasrestart' option to a selector based on which $debian_version is detected, 
etch does not have a ssh restart option in the initscript, but lenny does
 2008-10-26 12:39:45 -04:00
Micah Anderson
1b2dcaf510 update formatting to be consistent with upstream puppet emacs mode, if this is different from the vim 
mode, then there is a difference between these two editor's formatting that needs to be resolved
 2008-10-23 15:04:47 -04:00
Micah Anderson
50c52b8483 Merge branch 'master' of gitosis@labs.riseup.net:module_sshd 2008-10-23 15:01:53 -04:00