aboutsummaryrefslogtreecommitdiff
path: root/templates/sshd_config/Debian_lenny.erb
AgeCommit message (Collapse)Author
2014-08-19OopsSilvio Rhatto
2014-08-19Back to hmac-sha1 on lenny/squeezeSilvio Rhatto
2014-08-19Back to OpenSSH HMAC: SHA1 -> SHA2-512 (suggested by duraconf)Silvio Rhatto
2013-07-16Rollback: hmac-sha2-512 is just supported on newer systemsSilvio Rhatto
2013-07-16OpenSSH HMAC: SHA1 -> SHA2-512 (suggested by duraconf)Silvio Rhatto
2012-06-05new style for 2.7mh
2011-07-21Adding PrintMotd parameter to all templates and setting per-distro default valueSilvio Rhatto
2011-07-13Removing sshd_use_strong_ciphers parameter as sshd_hardened_ssl does the jobSilvio Rhatto
2011-07-13Merge branch 'master' of git://labs.riseup.net/shared-sshdSilvio Rhatto
2011-06-21New opt-in support to only use strong SSL ciphers and MACs.intrigeri
The new configuration variable is $sshd_hardened_ssl. Settings were stolen from https://github.com/ioerror/duraconf.git.
2011-02-23Changing strong cipher to aes128-crtSilvio Rhatto
2011-02-23Changing parameter name sshd_perfect_forward_secrecy to ↵Silvio Rhatto
sshd_use_strong_ciphers as sshd already does PFS
2011-02-21remove HostbasedUsesNameFromPacketOnly yes from Debian sshd_config ↵Micah Anderson
templates. This is not set in the Debian templates by default, and the default is actually no, not yes. If someone wishes to make a configuration variable they can, otherwise head/tail_additional options can be used
2011-02-19Merge branch 'master' of git://labs.riseup.net/shared-sshdSilvio Rhatto
Conflicts: templates/sshd_config/Debian_squeeze.erb
2011-02-13Merge branch 'master' of git://labs.riseup.net/shared-sshdSilvio Rhatto
2010-12-16Introducing perfect forward secrecy for SSHSilvio Rhatto
2010-12-14"ChallengeResponseAuthentication no" was being hardcoded later in the Debian ↵Micah Anderson
Lenny sshd_config template, even though we offer it as a variable. With this commit, the variable will actually work, rather than be overriden
2010-10-21lenny already has AcceptEnv by defaultmh
2010-10-16Syntax fix.intrigeri
2010-10-16New option sshd_ports that obsoletes sshd_port.intrigeri
Backward compatibility is preserved.
2010-10-16Cleanup templates: sshd_port is guaranteed by init.pp not to be empty.intrigeri
2010-10-03Actually allow enabling ChallengeResponseAuthentication on Debian Lenny.intrigeri
2009-12-27PrintMotd using default OpenSSH settingSilvio Rhatto
2009-07-07Template out the possibility of specifying the key word 'off' to theMicah Anderson
$sshd_port parameter, which simply puts a comment in front of that option, rather than specifying it.
2009-07-07replace the sshd_additional_options variable with two, one calledMicah Anderson
sshd_head_additional_options and one called sshd_tail_additional_options. the first puts the value at the beginning of the file, and the second at the end. This is necessary due to some option ordering requiring things to be before others
2008-12-07Fix location of default sftp-server on Debian, and uncomment the sftpMicah Anderson
configuration line to get the sshd_config file defaults to be more like the standard shipped defaults from Debian
2008-10-27Debian's sshd config typically has PrintMotd no set because its already ↵Micah Anderson
printed via PAM. Without it set, it is defaulted to 'yes', which results in the MOTD being printed twice, so we return the Debian default configuration in this commit
2008-10-20new options, cleaned up real_ hackmh
git-svn-id: https://svn/ipuppet/trunk/modules/sshd@2527 d66ca3ae-40d7-4aa7-90d4-87d79ca94279
2008-09-29merged with riseupmh
git-svn-id: https://svn/ipuppet/trunk/modules/sshd@2263 d66ca3ae-40d7-4aa7-90d4-87d79ca94279
generated by cgit v1.2.3 (git 2.39.1) at 2024-11-19 14:26:03 +0000