83 Commits

Author SHA1 Message Date
Martin Narkiewicz
4cf16192a5 Add support for PubkeyAcceptedKeyTypes option to sshd_config 2017-03-16 10:48:13 -07:00
Phil Friderici
b476a3f725 Enhance compatibility with Solaris
Some OpenSSH parameters are not compatible with Solaris SSH.
They do break if they are included into the configuration file(s).

This patch does not include them by default on Solaris anymore.

Changed parameters:
sshd_config_tcp_keepalive   (TCPKeepAlive in sshd_config)
sshd_config_permittunnel    (PermitTunnel in sshd_config)
sshd_config_maxsessions     (MaxSessions  in sshd_config)
ssh_config_hash_known_hosts (HashKnownHosts in ssh_config)
2017-02-27 09:10:12 +01:00
Garrett Honeycutt
6c1beba7fb Document ChallengeResponseAuthentication on EL systems 2016-10-28 11:50:32 -04:00
Garrett Honeycutt
00829437ba Merge pull request #186 from andrei693/Expose_PermitTunnel_from_sshd_config
Expose PermitTunnel from sshd_config
2016-10-25 11:25:37 -04:00
Andrei Brezan
e044e4c89f Expose PermitTunnel from sshd_config 2016-10-24 17:18:25 +02:00
Michael LoSapio
64008a427f Add support for ProxyCommand in ssh_config 2016-10-20 16:04:15 -04:00
43d6107949 adding support for KexAlgorithms 2016-10-19 14:01:24 -07:00
Bosse Andersson
f41d7966ab Add configurable param X11UseLocalhost to sshd_config 2016-10-04 12:55:06 +02:00
Garrett Honeycutt
d13c324001 Add support for Ubuntu 16.04 LTS 2016-08-28 20:55:00 -04:00
Andrei Brezan
d68ebec55d Expose TCPKeepAlive from sshd_config 2016-08-18 10:24:41 +02:00
Garrett Honeycutt
aafdb89eb5 Support Ruby v2.3.1 2016-08-08 20:30:53 -04:00
jthiesfeld
cb09aedee6 Adding two new options for sshd_config PermitEmptyPasswords and
PermitUserEnvironment
2016-06-21 15:52:55 -05:00
Garrett Honeycutt
ab88a5e86f Working with sergiik to improve documentation of new params 2016-06-20 12:38:24 -04:00
Sergii Kipot
0d936a954c Add support for multiple files in GlobalKnownHostsFile ssh option
Array option ssh_config_global_known_hosts_list implemented
2016-06-15 20:36:58 +02:00
Sergii Kipot
5be19cd1d7 Add support for UserKnownHostsFile ssh option
Array option ssh_config_user_known_hosts_file implemented
2016-06-15 17:52:53 +02:00
Garrett Honeycutt
6e920cab49 Merge pull request #162 from andrei693/Add_multiple_ports_option_to_sshd_config_port
Change sshd_config_port to support multiple port numbers
2016-06-09 16:47:25 -04:00
Andrei Brezan
1c78f1e732 Change sshd_config_port to support multiple port numbers, string/integer/array 2016-06-09 12:41:12 +02:00
Florian Faltermeier
49c799afb3 add support for PubkeyAuthentication in sshd_config 2016-06-08 15:25:24 +02:00
Florian Faltermeier
a7a15c203e allow ecdsa-sha2-nistp256 hostkeys 2016-06-07 09:15:06 +02:00
jthiesfeld
e1841e04d8 Add param to manage MaxAuthTries in sshd_config 2016-06-06 12:49:20 -04:00
Garrett Honeycutt
88f857d6b6 Work with apazga on adding config options for ssh_config 2016-06-04 10:42:02 -04:00
Abel Paz
b48e066f21 Additional parameters for ssh_config
To allow the following options to be configured in ssh_config
* StrictHostKeyChecking
* EnableSSHKeysign
* HostbasedAuthentication for ssh_client
2016-06-04 10:36:17 -04:00
Anders Larsson
98382a05ff Refactor spec tests 2016-02-24 12:01:30 +01:00
Garrett Honeycutt
dd970dbaa5 Add CVE-2016-0777 and CVE-2016-0778 information to README 2016-01-17 13:12:26 -05:00
Phil Friderici
38260e68c4 Set UseRoaming parameter only on Linux clients
- add variable validation
- add tests
2016-01-15 15:16:09 +01:00
Tom De Vylder
8876844637 Add parameter sshd_addressfamily 2015-12-10 09:59:19 -05:00
Garrett Honeycutt
73a0d2ba35 Change formatting in README to be explicit about example types
This makes the markup render nicely on GitHub
2015-12-07 15:07:06 -05:00
Garrett Honeycutt
e3246a616a Update README to meet criteria for Puppet Labs Approved status 2015-11-24 13:53:08 -05:00
Daniel Fairhurst
e67cea8e24 Add a parameter to allow disabling management of the ssh service 2015-10-15 13:13:11 -04:00
Phil Friderici
45ef1ddbaa add default SFTP subsystem for SLES12 2015-10-07 15:28:54 +02:00
Garrett Honeycutt
b434ea89ef Support Puppet v4 and v3 with future parser 2015-08-05 11:01:02 -04:00
kTitan
01edea3712 Update README for HostbasedAuthentication and small styling fixes 2015-06-02 10:21:38 +02:00
kTitan
6d0cfd48c8 Parameterize IgnoreUserKnownHosts & IgnoreRhosts 2015-06-01 21:50:46 +02:00
kTitan
ea036f117e Add parameter for HostbasedAuthentication option in sshd_config 2015-06-01 10:58:25 -04:00
Kyle Fu
fbe72409ff Make GSSAPIAuthentication in ssh_config modifiable. Fix corresponding Puppet::Error test code. 2015-05-04 11:00:11 +08:00
Garrett Honeycutt
c105d91d4e Add parameters for AuthorizedKeysCommand and AuthorizedKeysCommandUser 2015-04-13 17:01:45 -04:00
Phil Friderici (ephifre)
ffde12030c parameterize sftp_server related settings 2015-04-07 18:32:01 +02:00
Markus Frosch
a03df37f09 Manage the ssh_known_hosts file when ssh_key_import is used 2014-11-16 16:47:44 -08:00
Garrett Honeycutt
9232254a1b Support Ruby v2.1.0 2014-11-13 01:47:00 -08:00
Kalle Kiviaho
6d6fe4c030 Add support for MaxStartups and MaxSessions in sshd_config
MaxStartups and MaxSessions control how many connections can be made to a ssh server.
Corrected faulty commented value for MaxStartups.
2014-11-12 16:03:08 -08:00
Garrett Honeycutt
8fbbdc7d3d Add ability to specify ListenAddress in sshd_config 2014-10-25 13:52:05 -07:00
Garrett Honeycutt
fadfa3b3bc Merge pull request #85 from diddi-/sshd_hostkey
Add support for changing HostKey option in sshd_config
2014-10-21 11:49:05 -04:00
Garrett Honeycutt
0e15d74b4b Support EL7
No actual code changes were needed to support EL7. Tests were updated
such that each supported release of EL is now tested.
2014-10-14 20:30:37 -04:00
Garrett Honeycutt
114bbccadb Release v3.19.1 - Bugfix: default GSSAPIDelegateCredentials to undef
This was previously set to undef everywhere except Solaris 11 which was
set incorrectly to 'yes'.
2014-09-24 10:13:56 -04:00
Diddi Oscarsson
2dfe01c0e3 Add support for changing HostKey option
This is to make it possible to change the HostKey parameter in
sshd_config.

As the HostKey is hardcoded to the template now it is currently not
possible to connect using for example ssh-dss. This commit changes that
behaviour.
2014-09-02 13:41:46 +02:00
Wolf Noble
dbd0e51760 Add parameters to specify the template used to generate sshd_config and ssh_config 2014-08-12 14:47:58 -05:00
Wolf Noble
71dfbca914 permit customization of sshd config loglevel 2014-08-06 15:13:32 -05:00
Garrett Honeycutt
3f94bff707 Add Allow/Deny options to sshd_config
Add ability to specify DenyGroups, AllowGroups, and AllowUsers to
sshd_config.
2014-05-29 11:17:18 -04:00
Garrett Honeycutt
eef1ca3f73 Add ability to specify DenyUsers in sshd_config 2014-05-28 16:46:13 -04:00
Garrett Honeycutt
230023ef5a Add ability to specify MACs option in ssh_config and sshd_config 2014-05-28 14:57:35 -04:00