puppet/ssh
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity
373 Commits 1 Branch 0 Tags
Commit Graph

72 Commits

Author SHA1 Message Date
David Hollinger
4cefc65069 Update hostcertificated to take both Strings and Arrays 2017-07-24 14:36:10 -05:00
David Hollinger
717a237cc0 Add parameter to set AuthorizedPrincipalsFile setting 2017-07-24 13:42:13 -05:00
David Hollinger
ec5141de84 Update HostCertificate to take an array of certs 2017-07-24 13:42:13 -05:00
Mears148
5368e52b30 Add PrintLastLog, UsePrivilegeSeparation, and Compression 2017-05-26 13:27:16 -04:00
David Hollinger
b67aefd3c4 Add support for HostCertificate and TrustedUserCAKeys settings in sshd_config 2017-05-17 10:47:04 -04:00
Martin Narkiewicz
4cf16192a5 Add support for PubkeyAcceptedKeyTypes option to sshd_config 2017-03-16 10:48:13 -07:00
Phil Friderici
b476a3f725 Enhance compatibility with Solaris 
Some OpenSSH parameters are not compatible with Solaris SSH.
They do break if they are included into the configuration file(s).

This patch does not include them by default on Solaris anymore.

Changed parameters:
sshd_config_tcp_keepalive   (TCPKeepAlive in sshd_config)
sshd_config_permittunnel    (PermitTunnel in sshd_config)
sshd_config_maxsessions     (MaxSessions  in sshd_config)
ssh_config_hash_known_hosts (HashKnownHosts in ssh_config)
 2017-02-27 09:10:12 +01:00
Garrett Honeycutt
00829437ba Merge pull request #186 from andrei693/Expose_PermitTunnel_from_sshd_config 
Expose PermitTunnel from sshd_config
 2016-10-25 11:25:37 -04:00
Andrei Brezan
e044e4c89f Expose PermitTunnel from sshd_config 2016-10-24 17:18:25 +02:00
Garrett Honeycutt
6f34248977 Fixup mlosapio's contribution 2016-10-20 17:47:04 -04:00
Michael LoSapio
64008a427f Add support for ProxyCommand in ssh_config 2016-10-20 16:04:15 -04:00
43d6107949 adding support for KexAlgorithms 2016-10-19 14:01:24 -07:00
Bosse Andersson
f41d7966ab Add configurable param X11UseLocalhost to sshd_config 2016-10-04 12:55:06 +02:00
Garrett Honeycutt
d13c324001 Add support for Ubuntu 16.04 LTS 2016-08-28 20:55:00 -04:00
Andrei Brezan
d68ebec55d Expose TCPKeepAlive from sshd_config 2016-08-18 10:24:41 +02:00
jthiesfeld
cb09aedee6 Adding two new options for sshd_config PermitEmptyPasswords and 
PermitUserEnvironment
 2016-06-21 15:52:55 -05:00
Sergii Kipot
0d936a954c Add support for multiple files in GlobalKnownHostsFile ssh option 
Array option ssh_config_global_known_hosts_list implemented
 2016-06-15 20:36:58 +02:00
Sergii Kipot
5be19cd1d7 Add support for UserKnownHostsFile ssh option 
Array option ssh_config_user_known_hosts_file implemented
 2016-06-15 17:52:53 +02:00
Garrett Honeycutt
6e920cab49 Merge pull request #162 from andrei693/Add_multiple_ports_option_to_sshd_config_port 
Change sshd_config_port to support multiple port numbers
 2016-06-09 16:47:25 -04:00
Andrei Brezan
1c78f1e732 Change sshd_config_port to support multiple port numbers, string/integer/array 2016-06-09 12:41:12 +02:00
Florian Faltermeier
49c799afb3 add support for PubkeyAuthentication in sshd_config 2016-06-08 15:25:24 +02:00
Garrett Honeycutt
cbc1db4819 Merge pull request #170 from ghoneycutt/maxauthtries 
Add param to manage MaxAuthTries in sshd_config
 2016-06-06 13:56:21 -04:00
jthiesfeld
e1841e04d8 Add param to manage MaxAuthTries in sshd_config 2016-06-06 12:49:20 -04:00
Nasredine Bentoumi
c04c0cca92 Fix Solaris ssh issue - AddressFamily not supported 2016-06-06 12:27:48 -04:00
Garrett Honeycutt
88f857d6b6 Work with apazga on adding config options for ssh_config 2016-06-04 10:42:02 -04:00
Abel Paz
b48e066f21 Additional parameters for ssh_config 
To allow the following options to be configured in ssh_config
* StrictHostKeyChecking
* EnableSSHKeysign
* HostbasedAuthentication for ssh_client
 2016-06-04 10:36:17 -04:00
Phil Friderici
38260e68c4 Set UseRoaming parameter only on Linux clients 
- add variable validation
- add tests
 2016-01-15 15:16:09 +01:00
Michael Merideth
7da166afb8 mitigate client bugs CVE-2016-0777 and CVE-2016-0778 2016-01-14 14:31:12 -07:00
Garrett Honeycutt
a5db9add8b Keep commented config option to show default value for AddressFamily 2015-12-10 09:59:19 -05:00
Tom De Vylder
8876844637 Add parameter sshd_addressfamily 2015-12-10 09:59:19 -05:00
Roy Williams
e649f71ef9 Add support for KerberosAuthentication option in sshd. 2015-09-03 15:01:30 -04:00
Phil Friderici (ephifre)
0de49e43f7 fix for hiera_array() always returning an empty array 2015-08-11 13:35:42 +02:00
Phil Friderici (ephifre)
13e7433e0b Fix failing spec tests and get Puppet v4 working 2015-08-05 11:02:11 -04:00
kTitan
6d0cfd48c8 Parameterize IgnoreUserKnownHosts & IgnoreRhosts 2015-06-01 21:50:46 +02:00
kTitan
ea036f117e Add parameter for HostbasedAuthentication option in sshd_config 2015-06-01 10:58:25 -04:00
Kyle Fu
fbe72409ff Make GSSAPIAuthentication in ssh_config modifiable. Fix corresponding Puppet::Error test code. 2015-05-04 11:00:11 +08:00
Garrett Honeycutt
de29fb46ca Merge pull request #108 from ghoneycutt/authorized_keys_command 
Add parameters for AuthorizedKeysCommand and AuthorizedKeysCommandUser
 2015-04-13 19:27:58 -04:00
Garrett Honeycutt
c105d91d4e Add parameters for AuthorizedKeysCommand and AuthorizedKeysCommandUser 2015-04-13 17:01:45 -04:00
Phil Friderici (ephifre)
a30a509889 move empty line into conditional block 2015-04-09 11:36:58 +02:00
Phil Friderici (ephifre)
ffde12030c parameterize sftp_server related settings 2015-04-07 18:32:01 +02:00
Markus Frosch
a03df37f09 Manage the ssh_known_hosts file when ssh_key_import is used 2014-11-16 16:47:44 -08:00
Garrett Honeycutt
d462f6f0b2 Improve validation of sshd_config_maxstartups and add spec tests 2014-11-13 01:46:53 -08:00
Kalle Kiviaho
6d6fe4c030 Add support for MaxStartups and MaxSessions in sshd_config 
MaxStartups and MaxSessions control how many connections can be made to a ssh server.
Corrected faulty commented value for MaxStartups.
 2014-11-12 16:03:08 -08:00
Garrett Honeycutt
8fbbdc7d3d Add ability to specify ListenAddress in sshd_config 2014-10-25 13:52:05 -07:00
Markus Frosch
445981f9af Add sshd_listen parameter for ListenAddress 2014-10-25 21:48:13 +02:00
Garrett Honeycutt
fadfa3b3bc Merge pull request #85 from diddi-/sshd_hostkey 
Add support for changing HostKey option in sshd_config
 2014-10-21 11:49:05 -04:00
Garrett Honeycutt
114bbccadb Release v3.19.1 - Bugfix: default GSSAPIDelegateCredentials to undef 
This was previously set to undef everywhere except Solaris 11 which was
set incorrectly to 'yes'.
 2014-09-24 10:13:56 -04:00
Roy Victor Williams
ab37372230 Add support for GSSAPIDelegateCredentials in ssh_config. 
By default this only applies to Solaris 11.
 2014-09-23 16:52:34 -04:00
Diddi Oscarsson
2dfe01c0e3 Add support for changing HostKey option 
This is to make it possible to change the HostKey parameter in
sshd_config.

As the HostKey is hardcoded to the template now it is currently not
possible to connect using for example ssh-dss. This commit changes that
behaviour.
 2014-09-02 13:41:46 +02:00
Garrett Honeycutt
bf53e2f36e Fixup gmcgrath's contribution to comply with style 2014-08-09 10:39:25 -04:00