puppet-sshd - Puppet module for sshd

Age	Commit message (Collapse)	Author
2015-05-04	Implement enhanced MAC (Message Authentication Codes) according to	Micah Anderson
	installed version of openssh and https://stribika.github.io/2015/01/04/secure-secure-shell.html
2015-05-04	Implement enhanced symmetric cipher selection, based on	Micah Anderson
	https://stribika.github.io/2015/01/04/secure-secure-shell.html and version of openssh installed
2015-05-04	Implement KexAlgorithms settings, based on Key exchange section of	Micah Anderson
	https://stribika.github.io/2015/01/04/secure-secure-shell.html Note, that on some systems it is uncertain if they will have a new enough version of openssh installed, so on those a version test is done to see before setting them.
2015-05-04	Change 'hardened_ssl' paramter to simply 'hardened', this makes more	Micah Anderson
	sense in general
2014-11-21	Add a $hostkey_type variable that allows you to set which hostkey	Micah Anderson
	types you want to support in your sshd_config. We use the ssh_version fact to determine the default hostkey types. Only enable rsa and ed25519 for ssh versions greater or equal to 6.5, otherwise enable rsa and dsa. Some distributions, such as debian, also enable ecdsa as a hostkey type, but this is a known bad NIST curve, so we do not enable that by default (thus deviating from the stock sshd config)
2012-06-05	new style for 2.7	mh

2011-07-21	Adding PrintMotd parameter to all templates and setting per-distro default value	Silvio Rhatto

2011-07-13	Removing sshd_use_strong_ciphers parameter as sshd_hardened_ssl does the job	Silvio Rhatto

2011-02-23	Adding sshd_use_strong_ciphers to all sshd_config templates	Silvio Rhatto

2011-02-19	Updating lucid template with new ssh port scheme	Silvio Rhatto

2010-05-18	Adding Ubuntu_lucid.erb	Silvio Rhatto