diff options
| author | Silvio Rhatto <rhatto@riseup.net> | 2013-07-20 12:43:46 -0300 |
|---|---|---|
| committer | Silvio Rhatto <rhatto@riseup.net> | 2013-07-20 12:43:46 -0300 |
| commit | ad030e74efe9249b59ef6fdb58fca8d9d562cc11 (patch) | |
| tree | 51f0b604ca406e9a1ce506e79532f2bcb14f396c | |
| parent | 48b71ad7a3b7c400575504927db7555bb6dd2aa2 (diff) | |
| download | puppet-sshd-ad030e74efe9249b59ef6fdb58fca8d9d562cc11.tar.gz puppet-sshd-ad030e74efe9249b59ef6fdb58fca8d9d562cc11.tar.bz2 | |
Back to hmac-sha1 as hmac-sha2-512 prevented squeeze systems to connect
| -rw-r--r-- | templates/sshd_config/Debian_sid.erb | 2 | ||||
| -rw-r--r-- | templates/sshd_config/Debian_wheezy.erb | 2 |
2 files changed, 2 insertions, 2 deletions
diff --git a/templates/sshd_config/Debian_sid.erb b/templates/sshd_config/Debian_sid.erb index 60c15fa..70bb4bf 100644 --- a/templates/sshd_config/Debian_sid.erb +++ b/templates/sshd_config/Debian_sid.erb @@ -115,7 +115,7 @@ AllowGroups <%= s %> <% if scope.lookupvar('sshd::hardened_ssl') == 'yes' -%> Ciphers aes256-ctr -MACs hmac-sha2-512 +MACs hmac-sha1 <% end -%> <% unless (s=scope.lookupvar('sshd::tail_additional_options')).empty? -%> diff --git a/templates/sshd_config/Debian_wheezy.erb b/templates/sshd_config/Debian_wheezy.erb index 60c15fa..70bb4bf 100644 --- a/templates/sshd_config/Debian_wheezy.erb +++ b/templates/sshd_config/Debian_wheezy.erb @@ -115,7 +115,7 @@ AllowGroups <%= s %> <% if scope.lookupvar('sshd::hardened_ssl') == 'yes' -%> Ciphers aes256-ctr -MACs hmac-sha2-512 +MACs hmac-sha1 <% end -%> <% unless (s=scope.lookupvar('sshd::tail_additional_options')).empty? -%> |