| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2013-05-20 | on newer puppet version the openbsd service provider changed slightly making ↵ | mh | |
| this necessary | |||
| 2013-02-04 | Merge remote-tracking branch 'githubmirror/master' | mh | |
| 2013-02-04 | Merge pull request #2 from mmoll/style | duritong | |
| style fixes | |||
| 2013-02-03 | style fixes | Michael Moll | |
| silence puppet-lint | |||
| 2013-01-09 | README upgrade notice | varac | |
| 2013-01-02 | Merge commit '42fce2a4576dd97a270d4d875531b39920655edb' | mh | |
| 2013-01-02 | Merge remote-tracking branch 'shared/master' | mh | |
| 2012-11-07 | added Ubuntu precise support | nadir | |
| 2012-08-26 | fix variable name | mh | |
| 2012-06-18 | correct variable naming | mh | |
| 2012-06-13 | migrate away from hiera stuff | mh | |
| 2012-06-08 | recmkdir is gone | mh | |
| 2012-06-05 | new style for 2.7 | mh | |
| 2012-06-05 | new style for 2.7 | mh | |
| 2012-02-03 | Adding sshd_config for oneiric | Silvio Rhatto | |
| 2011-07-29 | remove legacy facts | mh | |
| 2011-07-29 | Merge remote-tracking branch 'shared/master' | mh | |
| 2011-07-21 | Adding PrintMotd parameter to all templates and setting per-distro default value | Silvio Rhatto | |
| 2011-07-17 | Document the $sshd_shared_ip variable in the README | Gabriel Filion | |
| Signed-off-by: Gabriel Filion <lelutin@gmail.com> | |||
| 2011-07-17 | Document the $sshd_print_motd variable in the README | Gabriel Filion | |
| Signed-off-by: Gabriel Filion <lelutin@gmail.com> | |||
| 2011-07-17 | Provide a default value for $sshd_shared_ip in sshd::client | Gabriel Filion | |
| Since it's possible to "include sshd::client" without using "include sshd" (e.g. installing/managing ssh client but not the server) provide a default value for $sshd_shared_ip also in the sshd::client class. Signed-off-by: Gabriel Filion <lelutin@gmail.com> | |||
| 2011-07-16 | Clean out $ssh_use_strong_ciphers | Gabriel Filion | |
| A tentative option from rhatto using the variable named $ssh_use_strong_ciphers still has two lines in init.pp Since the same functionality is provided by the variable $ssh_hardened_ssl that was merged in the shared repository, rhatto removed his feature. But there are still two lines left, so simply remove them. Signed-off-by: Gabriel Filion <lelutin@gmail.com> | |||
| 2011-07-16 | Enable $ssh_hardened_ssl for FreeBSD | Gabriel Filion | |
| It is the only sshd_config template that didn't have this option, so copy it from the other templates. Signed-off-by: Gabriel Filion <lelutin@gmail.com> | |||
| 2011-07-14 | Updating FreeBSD template for new sshd_ports variable | Silvio Rhatto | |
| 2011-07-13 | Removing sshd_use_strong_ciphers parameter as sshd_hardened_ssl does the job | Silvio Rhatto | |
| 2011-07-13 | Merge branch 'master' of git://labs.riseup.net/shared-sshd | Silvio Rhatto | |
| 2011-06-21 | Merge remote-tracking branch 'lelutin/freebsd' | Micah Anderson | |
| 2011-06-21 | Merge branch 'feature/debian_wheezy' | intrigeri | |
| 2011-06-21 | Add sshd_config template for Debian Wheezy. | intrigeri | |
| Currently, this is a symlink to the Debian sid's one, which I've recently resync'd. Once Wheezy is frozen, we'll want to fork its own template. | |||
| 2011-06-21 | New opt-in support to only use strong SSL ciphers and MACs. | intrigeri | |
| The new configuration variable is $sshd_hardened_ssl. Settings were stolen from https://github.com/ioerror/duraconf.git. | |||
| 2011-04-03 | we should pass the architecture to devel packages | mh | |
| 2011-02-23 | Changing strong cipher to aes128-crt | Silvio Rhatto | |
| 2011-02-23 | Adding sshd_use_strong_ciphers to all sshd_config templates | Silvio Rhatto | |
| 2011-02-23 | Changing parameter name sshd_perfect_forward_secrecy to ↵ | Silvio Rhatto | |
| sshd_use_strong_ciphers as sshd already does PFS | |||
| 2011-02-22 | Merge remote-tracking branch 'lelutin/ubuntu' | Micah Anderson | |
| 2011-02-21 | FreeBSD: Use variables for the Kerberos options | Gabriel Filion | |
| Signed-off-by: Gabriel Filion <lelutin@gmail.com> | |||
| 2011-02-21 | remove HostbasedUsesNameFromPacketOnly yes from Debian sshd_config ↵ | Micah Anderson | |
| templates. This is not set in the Debian templates by default, and the default is actually no, not yes. If someone wishes to make a configuration variable they can, otherwise head/tail_additional options can be used | |||
| 2011-02-21 | Resync Debian sid template with the Squeeze's one. | intrigeri | |
| Currently, the only difference is LoginGraceTime, that defaults to 600 in sid. | |||
| 2011-02-21 | Merge remote branch 'lelutin/debian_template' | intrigeri | |
| 2011-02-19 | Updating lucid template with new ssh port scheme | Silvio Rhatto | |
| 2011-02-19 | Merge branch 'master' of git://labs.riseup.net/shared-sshd | Silvio Rhatto | |
| Conflicts: templates/sshd_config/Debian_squeeze.erb | |||
| 2011-02-19 | Update README to include the ssh_keygen function | Micah Anderson | |
| 2011-02-19 | Pull together a more comprehensive README, moving the configurable variables ↵ | Micah Anderson | |
| from init.pp into the README, and detailing the other features, and requirements, of the module | |||
| 2011-02-14 | Merge remote branch 'shared/master' | intrigeri | |
| Conflicts: templates/sshd_config/Debian_squeeze.erb I always picked the shared repository version when conflicts arose. The only exception to this rule was: I kept my branch's "HostbasedUsesNameFromPacketOnly yes" in order to be consistent with existing Etch and Lenny templates. This is not the default Debian setting, but I would find it weird if a host had this setting changed by Puppet after upgrading to Squeeze. The right way to proceed would probably be to make this configurable. | |||
| 2011-02-14 | Merge remote branch 'immerda/master' | intrigeri | |
| 2011-02-13 | Perfect forward secrecy config at squeeze template | Silvio Rhatto | |
| 2011-02-13 | Merge branch 'master' of git://labs.riseup.net/shared-sshd | Silvio Rhatto | |
| 2011-01-30 | Enable support for Ubuntu | Gabriel Filion | |
| The sshd class currently has a mechanism to make resources for Ubuntu similar to the ones for Debian, but the sshd::client class doesn't. Also, There are no templates for sshd_config on Ubuntu so provide for them. Since Ubuntu releases almost all use ssh versions that are as recent as the Debian squeeze one, and the default sshd_config file is usually the same as on Debian, add a default (Ubuntu.erb) template so that it fits all Ubuntu releases. Signed-off-by: Gabriel Filion <lelutin@gmail.com> | |||
| 2011-01-30 | Add sshd_config template for Debian sid | Gabriel Filion | |
| Debian's unstable branch currently has no template for sshd_config, and thus cannot use the sshd class. Add a template for Debian sid. Signed-off-by: Gabriel Filion <lelutin@gmail.com> | |||
| 2011-01-30 | Finish fixing ChallengeResponseAuthentication | Gabriel Filion | |
| This value was hardcoded in both the Debian lenny and etch templates. The lenny template was fixed with commit 167cf532711ac88 but the etch template was left out. Fix the etch template so that the ChallengeResponseAuthentication instruction is not overridden. Signed-off-by: Gabriel Filion <lelutin@gmail.com> | |||
 |
index : puppet-sshd | |
| Puppet module for sshd | Fluxo |
| aboutsummaryrefslogtreecommitdiff |