From c60c8618f8dfbb5321cae26b77f1f1bb259e274a Mon Sep 17 00:00:00 2001 From: Daniel Tremblay Date: Wed, 4 Dec 2013 18:55:40 +0000 Subject: [PATCH] Change default value for sshd_config_challenge_resp_auth to 'yes' --- README.md | 2 +- manifests/init.pp | 2 +- spec/classes/init_spec.rb | 12 ++++++------ 3 files changed, 8 insertions(+), 8 deletions(-) diff --git a/README.md b/README.md index 77116a4..787997d 100644 --- a/README.md +++ b/README.md @@ -114,7 +114,7 @@ sshd_config_challenge_resp_auth ------------------------------- ChallengeResponseAuthentication option in sshd_config. -- *Default*: 'no' +- *Default*: 'yes' sshd_config_print_motd ---------------------- diff --git a/manifests/init.pp b/manifests/init.pp index ee8e668..67a7bff 100644 --- a/manifests/init.pp +++ b/manifests/init.pp @@ -22,7 +22,7 @@ class ssh ( $sshd_config_port = '22', $sshd_config_syslog_facility = 'AUTH', $sshd_config_login_grace_time = '120', - $sshd_config_challenge_resp_auth = 'no', + $sshd_config_challenge_resp_auth = 'yes', $sshd_config_print_motd = 'yes', $sshd_config_use_dns = 'yes', $sshd_config_banner = 'none', diff --git a/spec/classes/init_spec.rb b/spec/classes/init_spec.rb index 9102fac..fe39e47 100644 --- a/spec/classes/init_spec.rb +++ b/spec/classes/init_spec.rb @@ -53,7 +53,7 @@ describe 'ssh' do it { should contain_file('sshd_config').with_content(/^SyslogFacility AUTH$/) } it { should contain_file('sshd_config').with_content(/^LoginGraceTime 120$/) } it { should contain_file('sshd_config').with_content(/^PermitRootLogin yes$/) } - it { should contain_file('sshd_config').with_content(/^ChallengeResponseAuthentication no$/) } + it { should contain_file('sshd_config').with_content(/^ChallengeResponseAuthentication yes$/) } it { should contain_file('sshd_config').with_content(/^PrintMotd yes$/) } it { should contain_file('sshd_config').with_content(/^UseDNS yes$/) } it { should contain_file('sshd_config').with_content(/^Banner none$/) } @@ -135,7 +135,7 @@ describe 'ssh' do it { should contain_file('sshd_config').with_content(/^SyslogFacility AUTH$/) } it { should contain_file('sshd_config').with_content(/^LoginGraceTime 120$/) } it { should contain_file('sshd_config').with_content(/^PermitRootLogin yes$/) } - it { should contain_file('sshd_config').with_content(/^ChallengeResponseAuthentication no$/) } + it { should contain_file('sshd_config').with_content(/^ChallengeResponseAuthentication yes$/) } it { should contain_file('sshd_config').with_content(/^PrintMotd yes$/) } it { should contain_file('sshd_config').with_content(/^UseDNS yes$/) } it { should contain_file('sshd_config').with_content(/^Banner none$/) } @@ -218,7 +218,7 @@ describe 'ssh' do it { should contain_file('sshd_config').with_content(/^SyslogFacility AUTH$/) } it { should contain_file('sshd_config').with_content(/^LoginGraceTime 120$/) } it { should contain_file('sshd_config').with_content(/^PermitRootLogin yes$/) } - it { should contain_file('sshd_config').with_content(/^ChallengeResponseAuthentication no$/) } + it { should contain_file('sshd_config').with_content(/^ChallengeResponseAuthentication yes$/) } it { should contain_file('sshd_config').with_content(/^PrintMotd yes$/) } it { should contain_file('sshd_config').with_content(/^UseDNS yes$/) } it { should contain_file('sshd_config').with_content(/^Banner none$/) } @@ -301,7 +301,7 @@ describe 'ssh' do it { should contain_file('sshd_config').with_content(/^SyslogFacility AUTH$/) } it { should contain_file('sshd_config').with_content(/^LoginGraceTime 120$/) } it { should contain_file('sshd_config').with_content(/^PermitRootLogin yes$/) } - it { should contain_file('sshd_config').with_content(/^ChallengeResponseAuthentication no$/) } + it { should contain_file('sshd_config').with_content(/^ChallengeResponseAuthentication yes$/) } it { should contain_file('sshd_config').with_content(/^PrintMotd yes$/) } it { should contain_file('sshd_config').with_content(/^UseDNS yes$/) } it { should contain_file('sshd_config').with_content(/^Banner none$/) } @@ -401,7 +401,7 @@ describe 'ssh' do :sshd_config_syslog_facility => 'DAEMON', :sshd_config_login_grace_time => '60', :permit_root_login => 'no', - :sshd_config_challenge_resp_auth => 'yes', + :sshd_config_challenge_resp_auth => 'no', :sshd_config_print_motd => 'no', :sshd_config_use_dns => 'no', :sshd_config_banner => '/etc/sshd_banner', @@ -430,7 +430,7 @@ describe 'ssh' do it { should contain_file('sshd_config').with_content(/^SyslogFacility DAEMON$/) } it { should contain_file('sshd_config').with_content(/^LoginGraceTime 60$/) } it { should contain_file('sshd_config').with_content(/^PermitRootLogin no$/) } - it { should contain_file('sshd_config').with_content(/^ChallengeResponseAuthentication yes$/) } + it { should contain_file('sshd_config').with_content(/^ChallengeResponseAuthentication no$/) } it { should contain_file('sshd_config').with_content(/^PrintMotd no$/) } it { should contain_file('sshd_config').with_content(/^UseDNS no$/) } it { should contain_file('sshd_config').with_content(/^Banner \/etc\/sshd_banner$/) }