diff options
| author | Micah Anderson <micah@riseup.net> | 2008-09-26 17:55:02 -0400 |
|---|---|---|
| committer | Micah Anderson <micah@riseup.net> | 2008-09-26 17:55:02 -0400 |
| commit | 0b180227270cf5d1a5e2176142c2a129940f523a (patch) | |
| tree | ab355003385280d8a226e0a6b05a885232aaa110 /templates/sshd_config/Debian_normal.erb | |
| parent | 58fef5f8092b937caa2a11648f3937e17f718d81 (diff) | |
| download | puppet-sshd-0b180227270cf5d1a5e2176142c2a129940f523a.tar.gz puppet-sshd-0b180227270cf5d1a5e2176142c2a129940f523a.tar.bz2 | |
add sshd_allow_tcp_forwarding variable, with the default changed to no (note this is opposite of
what the existing template had enabled for Debian, but this is a better setting)
Diffstat (limited to 'templates/sshd_config/Debian_normal.erb')
| -rw-r--r-- | templates/sshd_config/Debian_normal.erb | 6 |
1 files changed, 6 insertions, 0 deletions
diff --git a/templates/sshd_config/Debian_normal.erb b/templates/sshd_config/Debian_normal.erb index 92cb7b0..f6a2a81 100644 --- a/templates/sshd_config/Debian_normal.erb +++ b/templates/sshd_config/Debian_normal.erb @@ -138,7 +138,13 @@ UsePAM no <%- end %> HostbasedUsesNameFromPacketOnly yes + +<%- if real_sshd_tcp_forwarding.to_s == 'yes' then %> AllowTcpForwarding yes +<%- else %> +AllowTcpForwarding no +<%- end %> + <%- if real_sshd_agent_forwarding.to_s == 'yes' then %> AllowAgentForwarding yes <%- else %> |