aboutsummaryrefslogtreecommitdiff
path: root/templates/sshd_config
diff options
context:
space:
mode:
authorMicah Anderson <micah@riseup.net>2008-09-27 13:30:52 -0400
committerMicah Anderson <micah@riseup.net>2008-09-27 13:30:52 -0400
commit2391ef9bfe2e5960a024b68d8e19d3a0954dd48c (patch)
treefef54fbbfbbd5e18063da0c8ecf7d22468d87e5e /templates/sshd_config
parentf62573822bf3997cd31707a9c6fa32604b3f23c1 (diff)
downloadpuppet-sshd-2391ef9bfe2e5960a024b68d8e19d3a0954dd48c.tar.gz
puppet-sshd-2391ef9bfe2e5960a024b68d8e19d3a0954dd48c.tar.bz2
add the ability to set the ListenAddress configuration option through sshd_listen_address
Diffstat (limited to 'templates/sshd_config')
-rw-r--r--templates/sshd_config/CentOS_normal.erb9
-rw-r--r--templates/sshd_config/Debian_normal.erb6
-rw-r--r--templates/sshd_config/Gentoo_normal.erb6
-rw-r--r--templates/sshd_config/OpenBSD_normal.erb6
4 files changed, 16 insertions, 11 deletions
diff --git a/templates/sshd_config/CentOS_normal.erb b/templates/sshd_config/CentOS_normal.erb
index e576a78..6a16d77 100644
--- a/templates/sshd_config/CentOS_normal.erb
+++ b/templates/sshd_config/CentOS_normal.erb
@@ -16,12 +16,13 @@ Port <%= real_sshd_port %>
Port 22
<%- end %>
+# Use these options to restrict which interfaces/protocols sshd will bind to
+<% for address in real_sshd_listen_address -%>
+ListenAddress <%= address %>
+<% end -%>
+#AddressFamily any
#Protocol 2,1
Protocol 2
-#AddressFamily any
-#ListenAddress 0.0.0.0
-#ListenAddress ::
-
# HostKey for protocol version 1
#HostKey /etc/ssh/ssh_host_key
# HostKeys for protocol version 2
diff --git a/templates/sshd_config/Debian_normal.erb b/templates/sshd_config/Debian_normal.erb
index d33064a..df8ebc8 100644
--- a/templates/sshd_config/Debian_normal.erb
+++ b/templates/sshd_config/Debian_normal.erb
@@ -2,7 +2,6 @@
# See the sshd(8) manpage for details
# What ports, IPs and protocols we listen for
-
<%- unless real_sshd_port.to_s.empty? then %>
Port <%= real_sshd_port -%>
<%- else -%>
@@ -10,8 +9,9 @@ Port 22
<%- end -%>
# Use these options to restrict which interfaces/protocols sshd will bind to
-#ListenAddress ::
-#ListenAddress 0.0.0.0
+<% for address in real_sshd_listen_address -%>
+ListenAddress <%= address %>
+<% end -%>
Protocol 2
# HostKeys for protocol version 2
HostKey /etc/ssh/ssh_host_rsa_key
diff --git a/templates/sshd_config/Gentoo_normal.erb b/templates/sshd_config/Gentoo_normal.erb
index dcbf9de..1b9b98e 100644
--- a/templates/sshd_config/Gentoo_normal.erb
+++ b/templates/sshd_config/Gentoo_normal.erb
@@ -16,9 +16,11 @@ Port <%= real_sshd_port %>
Port 22
<%- end %>
+# Use these options to restrict which interfaces/protocols sshd will bind to
+<% for address in real_sshd_listen_address -%>
+ListenAddress <%= address %>
+<% end -%>
#AddressFamily any
-#ListenAddress 0.0.0.0
-#ListenAddress ::
# Disable legacy (protocol version 1) support in the server for new
# installations. In future the default will change to require explicit
diff --git a/templates/sshd_config/OpenBSD_normal.erb b/templates/sshd_config/OpenBSD_normal.erb
index e62b3c1..32f6780 100644
--- a/templates/sshd_config/OpenBSD_normal.erb
+++ b/templates/sshd_config/OpenBSD_normal.erb
@@ -14,10 +14,12 @@ Port <%= real_sshd_port %>
Port 22
<%- end %>
+# Use these options to restrict which interfaces/protocols sshd will bind to
+<% for address in real_sshd_listen_address -%>
+ListenAddress <%= address %>
+<% end -%>
#Protocol 2,1
#AddressFamily any
-#ListenAddress 0.0.0.0
-#ListenAddress ::
# HostKey for protocol version 1
#HostKey /etc/ssh/ssh_host_key