puppet/ssh
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity
369 Commits 1 Branch 0 Tags
Commit Graph

117 Commits

Author SHA1 Message Date
Phil Friderici (ephifre)
ffde12030c parameterize sftp_server related settings 2015-04-07 18:32:01 +02:00
Garrett Honeycutt
a8be0466dc Always manage ssh_known_hosts and add spec tests 2014-11-16 16:47:44 -08:00
Markus Frosch
a03df37f09 Manage the ssh_known_hosts file when ssh_key_import is used 2014-11-16 16:47:44 -08:00
Garrett Honeycutt
d462f6f0b2 Improve validation of sshd_config_maxstartups and add spec tests 2014-11-13 01:46:53 -08:00
Kalle Kiviaho
6d6fe4c030 Add support for MaxStartups and MaxSessions in sshd_config 
MaxStartups and MaxSessions control how many connections can be made to a ssh server.
Corrected faulty commented value for MaxStartups.
 2014-11-12 16:03:08 -08:00
Garrett Honeycutt
8fbbdc7d3d Add ability to specify ListenAddress in sshd_config 2014-10-25 13:52:05 -07:00
Markus Frosch
445981f9af Add sshd_listen parameter for ListenAddress 2014-10-25 21:48:13 +02:00
Garrett Honeycutt
aeddcdceff Style fix - no functional changes 2014-10-21 11:50:00 -04:00
Garrett Honeycutt
fadfa3b3bc Merge pull request #85 from diddi-/sshd_hostkey 
Add support for changing HostKey option in sshd_config
 2014-10-21 11:49:05 -04:00
Garrett Honeycutt
114bbccadb Release v3.19.1 - Bugfix: default GSSAPIDelegateCredentials to undef 
This was previously set to undef everywhere except Solaris 11 which was
set incorrectly to 'yes'.
 2014-09-24 10:13:56 -04:00
Roy Victor Williams
ab37372230 Add support for GSSAPIDelegateCredentials in ssh_config. 
By default this only applies to Solaris 11.
 2014-09-23 16:52:34 -04:00
Diddi Oscarsson
2dfe01c0e3 Add support for changing HostKey option 
This is to make it possible to change the HostKey parameter in
sshd_config.

As the HostKey is hardcoded to the template now it is currently not
possible to connect using for example ssh-dss. This commit changes that
behaviour.
 2014-09-02 13:41:46 +02:00
Wolf Noble
dbd0e51760 Add parameters to specify the template used to generate sshd_config and ssh_config 2014-08-12 14:47:58 -05:00
Garrett Honeycutt
bf53e2f36e Fixup gmcgrath's contribution to comply with style 2014-08-09 10:39:25 -04:00
gmcgrath
ec91c40a5a Ability to use hiera_array for sshd_config's deny/allow users 2014-08-09 10:38:44 -04:00
Wolf Noble
71dfbca914 permit customization of sshd config loglevel 2014-08-06 15:13:32 -05:00
Mark Nalyanya
e52bad15e1 Update Solaris 11 package names 2014-06-10 13:48:53 -04:00
Garrett Honeycutt
3f94bff707 Add Allow/Deny options to sshd_config 
Add ability to specify DenyGroups, AllowGroups, and AllowUsers to
sshd_config.
 2014-05-29 11:17:18 -04:00
Garrett Honeycutt
eef1ca3f73 Add ability to specify DenyUsers in sshd_config 2014-05-28 16:46:13 -04:00
Garrett Honeycutt
230023ef5a Add ability to specify MACs option in ssh_config and sshd_config 2014-05-28 14:57:35 -04:00
Garrett Honeycutt
dbf2d6c138 Add ability to specify Ciphers option in ssh_config and sshd_config 2014-05-28 14:12:44 -04:00
nbentoumi
05704d7280 Add ServerKeyBits parameter 2014-05-22 14:52:23 -04:00
root
0d00d040da Add StrictModes parameter for sshd 2014-05-20 13:04:51 -04:00
Martin Hagstrom
7dd6b653b0 Add option to specify AuthorizedKeysFile 2014-05-16 13:01:27 +02:00
Garrett Honeycutt
58dd6263e7 Merging emahags/import_ssh_keys into master 2014-04-14 01:24:08 -04:00
Mike Lehner
9792b269bd Added ClientAliveCountMax config parameter 2014-04-01 20:34:37 -04:00
Garrett Honeycutt
b3c2cd7886 Fix Mark's commit to support Solaris 9 2014-02-28 18:43:17 -05:00
Mark Nalyanya
0523bac29a Fix service hasstatus for Solaris 9 2014-02-28 17:43:39 -05:00
Garrett Honeycutt
965bc661d0 exported sshkey does not require ssh package 
This is necessary because of a bug with PuppetDB. Without this patch you
will get invalid relationship errors.
 2014-02-27 20:03:52 -05:00
Garrett Honeycutt
ae87198e76 Make Solaris work 
Clean up nalyanyam's commit
 2014-02-27 18:06:18 -05:00
Garrett Honeycutt
ec878abe2b Cleanup duplicate code in Solaris port. 
This code would prevent a catalog from compiling.
 2014-02-25 10:41:24 +01:00
Garrett Honeycutt
5b8317daa5 Merge remote-tracking branch 'origin/master' into support_solaris 
Get this branch up to date
 2014-02-25 10:23:08 +01:00
Mark Nalyanya
2ee8163d9b Add Solaris support 
Parameterized the OS specific options
 2014-02-25 10:20:01 +01:00
Martin Hagstrom
492292b003 Fix type comparison of ssh_key_import 2014-02-20 22:38:20 +01:00
Martin Hagstrom
6236973bf8 Add option to not import ssh keys 2014-02-20 16:58:51 +01:00
Garrett Honeycutt
cd5e300fa0 Support Puppet v3.4 2014-02-06 14:54:43 -05:00
Phil Friderici
8a8ffbee6a added optional hiera merge functionality 2014-01-20 11:16:28 +01:00
Garrett Honeycutt
507b35e453 Cleaning up contributions 2013-12-21 02:27:10 -05:00
Garrett Honeycutt
42efd6ebfc Clean up contributions and improve spec tests 2013-12-21 02:21:06 -05:00
Garrett Honeycutt
7c378d0e8b Merge pull request #39 from Phil-Friderici/spec_test_fixes 
fixing spec warnings
 2013-12-19 04:47:16 -08:00
Phil Friderici
c6c85ed325 fixing spec warnings 2013-12-11 14:45:53 +01:00
Phil Friderici
7bce1e8b35 ssh_config_hash_known_hosts option added 2013-12-11 14:35:42 +01:00
Kent Johansson
388ba4d147 Add option to specify banner content 2013-12-05 12:13:26 +01:00
Daniel Tremblay
c60c8618f8 Change default value for sshd_config_challenge_resp_auth to 'yes' 2013-12-04 19:10:36 +00:00
Garrett Honeycutt
359a041582 Validate keys parameter 
Ensure that keys is a hash
 2013-11-14 17:57:47 -05:00
Garrett Honeycutt
3dfa15ef6b Add ability to specify listen port for sshd 
This patch allows you to specify a non-standard port for sshd.
 2013-11-02 14:22:46 +01:00
Garrett Honeycutt
31397a0f18 Add Debian 7 support 
Thank you, for5min, for testing this out and verifying that the package
names are the same between Debian 7 and Ubuntu 12.04 LTS.
 2013-11-02 13:59:27 +01:00
Garrett Honeycutt
5971660ec3 Release v3.0.0 
Remove sshd_config_sendenv_xmodifiers parameter which introduced a bug
that would prevent sshd from running.

Change default behvior of sshd to permit root to login. This is done to
be in line with the standard default of sshd. If you want to block root
from logging in by default, set the following in hiera.

ssh::permit_root_login: false
 2013-10-31 20:29:50 +01:00
Garrett Honeycutt
2ecb232a0e Add feature to allow setting 'SendEnv XMODIFIERS' 
This defaults to false and has options to independently set this in both
ssh_config and sshd_config.
 2013-10-31 11:19:46 +01:00
Garrett Honeycutt
c178b9519a normalize fail message format 
Use angle brackets around <$param> in message to make it clear when a
variable is blank.
 2013-10-31 10:40:44 +01:00