opuppet/module-sshd
5
0
Fork 0
Code Issues Pull requests Releases Wiki Activity
105 commits 2 branches 0 tags 297 KiB
Commit graph

87 commits

Author SHA1 Message Date
Antoine Beaupre
fa072188dc make saner defaults for authorized_keys 
note that this removes the user => root default
 2008-12-02 16:56:19 -05:00
Micah Anderson
6fb10939af In debian, the daemon is run as 'sshd', but the initscript is 
/etc/init.d/ssh, which means that name needs to be set to 'ssh', and
pattern needs to be set to 'sshd', and then we set the hassstatus and
hasrestart depending on the lsbdistcodename
 2008-10-27 17:00:39 -04:00
Micah Anderson
49d840dab4 lsbdistcodename is the proper variable to check for if the system is debian or lenny 2008-10-27 16:20:26 -04:00
Micah Anderson
98ddbe8ef5 change the debian 'hasrestart' option to a selector based on which $debian_version is detected, 
etch does not have a ssh restart option in the initscript, but lenny does
 2008-10-26 12:39:45 -04:00
Micah Anderson
1b2dcaf510 update formatting to be consistent with upstream puppet emacs mode, if this is different from the vim 
mode, then there is a difference between these two editor's formatting that needs to be resolved
 2008-10-23 15:04:47 -04:00
Micah Anderson
50c52b8483 Merge branch 'master' of gitosis@labs.riseup.net:module_sshd 2008-10-23 15:01:53 -04:00
Micah Anderson
96760cc558 debian has both status and restart options, in fact restart is 
preferable because a stop/start operation can leave sshd broken
because the stop wont stop before the start is run. On the next puppet
run ssh will be brought back up, but its a hair-raising few minutes
while you wonder what happened
 2008-10-23 14:59:42 -04:00
Pietro Ferrari
ae5215705a Merge commit 'immerda/master' 2008-10-21 02:03:37 +02:00
mh
96bbe0adb8 new options, cleaned up real_ hack 
git-svn-id: https://svn/ipuppet/trunk/modules/sshd@2527 d66ca3ae-40d7-4aa7-90d4-87d79ca94279
 2008-10-20 22:46:50 +00:00
mh
68b72b545b remove deprecated define 
git-svn-id: https://svn/ipuppet/trunk/modules/sshd@2317 d66ca3ae-40d7-4aa7-90d4-87d79ca94279
 2008-10-02 22:04:31 +00:00
Micah Anderson
90f14f4ae4 Merge commit 'ng/master' 2008-09-30 21:04:46 -04:00
mh
456fec72ed remove dependency completly 
git-svn-id: https://svn/ipuppet/trunk/modules/sshd@2267 d66ca3ae-40d7-4aa7-90d4-87d79ca94279
 2008-09-29 22:50:28 +00:00
mh
f733562469 moved package depency to the linux class, openbsd doesn't have this package 
git-svn-id: https://svn/ipuppet/trunk/modules/sshd@2266 d66ca3ae-40d7-4aa7-90d4-87d79ca94279
 2008-09-29 22:48:35 +00:00
mh
9ce186f5c3 merged with riseup 
git-svn-id: https://svn/ipuppet/trunk/modules/sshd@2263 d66ca3ae-40d7-4aa7-90d4-87d79ca94279
 2008-09-29 22:37:26 +00:00
Micah Anderson
16dd74a7de include assert_lsbdistcodename for debian 2008-09-28 13:40:35 -04:00
Micah Anderson
aa3badea81 add some comments to clarify how to set variables, and provide examples 2008-09-28 12:38:18 -04:00
Micah Anderson
c751cf22ed clarify in the example about how you can set multiple ListenAddresses with the right syntax 
also set the default to be 0.0.0.0 and :: which is the normal default for all IPv4 and all IPv6 addresses
 2008-09-27 17:45:57 -04:00
Micah Anderson
d827a52614 rename the templates to coincide with the downcased lsbdistcodename 
also add a missing comma in the content selector
 2008-09-27 16:51:32 -04:00
Micah Anderson
57eb2df037 Change the template naming: 
1. remove the _normal suffix, as it is not used
2. add a selector to look for the variable $lsbdistcodename being set and use that in selecting a template
this is useful to create a Debian_Etch.erb and a Debian_Lenny.erb which can have different values. For example
the Debian Etch version of openssh does not have the AllowAgentForwarding option, and if it is included, ssh will
fail to start
 2008-09-27 16:42:08 -04:00
Micah Anderson
57a0fd279e fix the default of PubkeyAuthentication (supposed to be yes, but was set to no) 2008-09-27 15:19:43 -04:00
Micah Anderson
11be1b1f8c fix duplicate sshd word in variable name 2008-09-27 13:39:28 -04:00
Micah Anderson
2391ef9bfe add the ability to set the ListenAddress configuration option through sshd_listen_address 2008-09-27 13:30:52 -04:00
Micah Anderson
ef6f137cff add the variable sshd_authorized_keys_file with the default set to the normal: %h/.ssh/authorized_keys 2008-09-26 20:03:10 -04:00
Micah Anderson
26e4ac53a9 add sshd_port variable enabling you to set a different port for sshd, default is 22 2008-09-26 18:23:25 -04:00
Micah Anderson
e525f18d12 minor fix to indentation 2008-09-26 18:16:58 -04:00
Micah Anderson
0b18022727 add sshd_allow_tcp_forwarding variable, with the default changed to no (note this is opposite of 
what the existing template had enabled for Debian, but this is a better setting)
 2008-09-26 17:55:02 -04:00
Micah Anderson
58fef5f809 add variable sshd_permit_empty_passwords, with the default set to no 2008-09-26 17:51:12 -04:00
Micah Anderson
06163fbb92 added sshd_rhosts_rsa_authentication variable, default set to no 
added sshd_hostbased_authentication variable, default set to no
 2008-09-26 17:44:16 -04:00
Micah Anderson
9edd2705d4 add sshd_ignore_rhosts option, default set to yes 2008-09-26 17:30:28 -04:00
Micah Anderson
ba8d788f89 add the sshd_strict_modes variable, with the default set to yes 2008-09-26 17:28:05 -04:00
Micah Anderson
19b49e80ee add the sshd_rsa_authentication option, default set to no 2008-09-26 17:21:01 -04:00
Micah Anderson
6f5a865b58 add sshd_pubkey_authentication variable, with the default set to yes 2008-09-26 17:10:33 -04:00
Micah Anderson
51c18b6b8f added sshd_challenge_response_authentication variable, with the default value set to no 2008-09-26 17:05:49 -04:00
Micah Anderson
3bd90d741c Add the variable AllowAgentForwarding to be set, with the default of 'no', only the Debian 
template was adjusted for this, as my knowledge of the other operating systems is not good enough
to determine the appropriate setting there
 2008-09-26 16:57:59 -04:00
mh
e3ce449ff4 Merge commit 'puzzle/development' 
git-svn-id: https://svn/ipuppet/trunk/modules/sshd@2230 d66ca3ae-40d7-4aa7-90d4-87d79ca94279
 2008-09-09 23:19:00 +00:00
mh
f66c80d97a remove double definition 
git-svn-id: https://svn/ipuppet/trunk/modules/sshd@2093 d66ca3ae-40d7-4aa7-90d4-87d79ca94279
 2008-07-29 23:34:40 +00:00
mh
e41d117247 Merge commit 'puzzle/development' 
git-svn-id: https://svn/ipuppet/trunk/modules/sshd@2092 d66ca3ae-40d7-4aa7-90d4-87d79ca94279
 2008-07-29 23:30:05 +00:00
mh
34bcb5c3d6 fixed fact as centos doesn't seem to add the hostname to the hostkey, fixed package requirement 
git-svn-id: https://svn/ipuppet/trunk/modules/sshd@1994 d66ca3ae-40d7-4aa7-90d4-87d79ca94279
 2008-07-25 11:17:06 +00:00
mh
9fc6a0baf3 added exporting and collecting of ssh keys 
Taken from David Schmitts ssh module: http://git.black.co.at/?p=module-ssh


git-svn-id: https://svn/ipuppet/trunk/modules/sshd@1877 d66ca3ae-40d7-4aa7-90d4-87d79ca94279
 2008-07-17 18:17:52 +00:00
mh
8bc696b174 readded a source 
git-svn-id: https://svn/ipuppet/trunk/modules/sshd@1628 d66ca3ae-40d7-4aa7-90d4-87d79ca94279
 2008-06-17 07:57:46 +00:00
mh
ece3afde12 merged with puzzle 
git-svn-id: https://svn/ipuppet/trunk/modules/sshd@1614 d66ca3ae-40d7-4aa7-90d4-87d79ca94279
 2008-06-13 21:01:39 +00:00
mh
2e38f51bd6 added status info 
git-svn-id: https://svn/ipuppet/trunk/modules/sshd@1198 d66ca3ae-40d7-4aa7-90d4-87d79ca94279
 2008-04-11 13:17:27 +00:00
mh
71da05e453 added debian and ubuntu 
git-svn-id: https://svn/ipuppet/trunk/modules/sshd@1197 d66ca3ae-40d7-4aa7-90d4-87d79ca94279
 2008-04-11 13:14:47 +00:00
mh
1ba819a192 fixed missing bracket 
git-svn-id: https://svn/ipuppet/trunk/modules/sshd@1164 d66ca3ae-40d7-4aa7-90d4-87d79ca94279
 2008-04-04 18:43:57 +00:00
mh
bdf171ffee fixed typo 
git-svn-id: https://svn/ipuppet/trunk/modules/sshd@1163 d66ca3ae-40d7-4aa7-90d4-87d79ca94279
 2008-04-04 18:40:29 +00:00
mh
3a15ca8c3c removed crap 
git-svn-id: https://svn/ipuppet/trunk/modules/sshd@1162 d66ca3ae-40d7-4aa7-90d4-87d79ca94279
 2008-04-04 18:39:12 +00:00
mh
0603077ce6 moved /dist/-stuff to /files/, heavily refactored a lot, made it more look all the same way. some sources added here and there. hope it still works everything, the location on the disk of /files/ is still call dists. no need to hurry to change that 
git-svn-id: https://svn/ipuppet/trunk/modules/sshd@1160 d66ca3ae-40d7-4aa7-90d4-87d79ca94279
 2008-04-04 15:30:26 +00:00
mh
eba8003eef fixed wrong path 
git-svn-id: https://svn/ipuppet/trunk/modules/sshd@923 d66ca3ae-40d7-4aa7-90d4-87d79ca94279
 2008-02-29 14:25:05 +00:00
mh
bcb0140f70 changed server way 
git-svn-id: https://svn/ipuppet/trunk/modules/sshd@921 d66ca3ae-40d7-4aa7-90d4-87d79ca94279
 2008-02-29 13:51:45 +00:00
mh
99410e1295 typo 
git-svn-id: https://svn/ipuppet/trunk/modules/sshd@916 d66ca3ae-40d7-4aa7-90d4-87d79ca94279
 2008-02-29 12:50:32 +00:00