puppet-sshd - Puppet module for sshd

Age	Commit message (Collapse)	Author
2015-05-04	Implement enhanced MAC (Message Authentication Codes) according to	Micah Anderson
	installed version of openssh and https://stribika.github.io/2015/01/04/secure-secure-shell.html
2015-05-04	Implement enhanced symmetric cipher selection, based on	Micah Anderson
	https://stribika.github.io/2015/01/04/secure-secure-shell.html and version of openssh installed
2015-05-04	Implement KexAlgorithms settings, based on Key exchange section of	Micah Anderson
	https://stribika.github.io/2015/01/04/secure-secure-shell.html Note, that on some systems it is uncertain if they will have a new enough version of openssh installed, so on those a version test is done to see before setting them.
2015-05-04	Change 'hardened_ssl' paramter to simply 'hardened', this makes more	Micah Anderson
	sense in general
2014-11-21	Add a $hostkey_type variable that allows you to set which hostkey	Micah Anderson
	types you want to support in your sshd_config. We use the ssh_version fact to determine the default hostkey types. Only enable rsa and ed25519 for ssh versions greater or equal to 6.5, otherwise enable rsa and dsa. Some distributions, such as debian, also enable ecdsa as a hostkey type, but this is a known bad NIST curve, so we do not enable that by default (thus deviating from the stock sshd config)
2012-06-18	correct variable naming	mh

2012-06-05	new style for 2.7	mh

2011-01-30	Enable support for Ubuntu	Gabriel Filion
	The sshd class currently has a mechanism to make resources for Ubuntu similar to the ones for Debian, but the sshd::client class doesn't. Also, There are no templates for sshd_config on Ubuntu so provide for them. Since Ubuntu releases almost all use ssh versions that are as recent as the Debian squeeze one, and the default sshd_config file is usually the same as on Debian, add a default (Ubuntu.erb) template so that it fits all Ubuntu releases. Signed-off-by: Gabriel Filion <lelutin@gmail.com>