diff options
author | Silvio Rhatto <rhatto@riseup.net> | 2016-03-28 14:39:21 -0300 |
---|---|---|
committer | Silvio Rhatto <rhatto@riseup.net> | 2016-03-28 14:39:21 -0300 |
commit | 8fb6b536230315b6722f0ad892184a949e89ce47 (patch) | |
tree | 55379e8bd63dd7ac2fd0e3d24d1ab4b3d7dc5a25 /manifests/subsystem/sshd.pp | |
parent | 6dcaaba1511425413de032345026d33cff1d9fac (diff) | |
download | puppet-nodo-8fb6b536230315b6722f0ad892184a949e89ce47.tar.gz puppet-nodo-8fb6b536230315b6722f0ad892184a949e89ce47.tar.bz2 |
Use ENC for sshd params
Diffstat (limited to 'manifests/subsystem/sshd.pp')
-rw-r--r-- | manifests/subsystem/sshd.pp | 19 |
1 files changed, 1 insertions, 18 deletions
diff --git a/manifests/subsystem/sshd.pp b/manifests/subsystem/sshd.pp index 6650fb9..3327de8 100644 --- a/manifests/subsystem/sshd.pp +++ b/manifests/subsystem/sshd.pp @@ -1,22 +1,5 @@ class nodo::subsystem::sshd { - # SSH Server - # - # We need to restrict listen address by default so multiple - # instances can live together in the same physical host. - # - class { '::sshd': - manage_nagios => hiera('nodo::subsystem::sshd::manage_nagios', false), - listen_address => hiera('nodo::subsystem::sshd::listen_address', [ "${::ipaddress}", '127.0.0.1' ]), - password_authentication => hiera('nodo::subsystem::sshd::password_authentication', 'yes'), - shared_ip => hiera('nodo::subsystem::sshd::shared_ip', 'yes'), - tcp_forwarding => hiera('nodo::subsystem::sshd::tcp_forwarding', 'yes'), - x11_forwarding => hiera('nodo::subsystem::sshd::x11_forwarding', 'no'), - hardened => hiera('nodo::subsystem::sshd::hardened', 'yes'), - print_motd => hiera('nodo::subsystem::sshd::print_motd', 'no'), - ports => hiera('nodo::subsystem::sshd::ports', [ 22 ]), - use_pam => hiera('nodo::subsystem::sshd::use_pam', 'no'), - use_storedconfigs => hiera('nodo::subsystem::use_storedconfigs', false), - } + include ::sshd # Add the localhost ssh key, useful when one needs # to ssh to localhost. |