leap_platform.git/puppet/modules/site_sshd/manifests, branch 0.8.0 [leap_platform] [style] lint further more 2016-04-25T19:41:20+00:00 varac varacanero@zeromail.org 2016-04-25T16:21:48+00:00 f2f2c7391056c252523730cd76ab759db9117c9c - ignore puppet lint error about inheriting from different namespace 
- ignore puppet lint error about inheriting from different namespace
Allow ecdsa hostkeys (#7642) until we can safely transition providers to 2016-02-11T15:35:39+00:00 Micah micah@leap.se 2016-02-09T21:47:52+00:00 70444eaf7b07affa832795f7e520c9ef2bd53791 better key algorithm choices. Change-Id: I6b9ec83dbfbf15d1b65e14145bf625db6517f6b7 
better key algorithm choices.

Change-Id: I6b9ec83dbfbf15d1b65e14145bf625db6517f6b7
[bug] Don't enable storedconfig in sshd class 2015-11-28T21:53:21+00:00 varac varacanero@zeromail.org 2015-11-28T21:53:21+00:00 8c7a2c7d7f84d56f395556aa893d8bb426c24178 - Related: #7615 
- Related: #7615
[bug] Use right sshd Ciphers and MACs for wheezy 2015-11-18T23:10:23+00:00 varac varacanero@zeromail.org 2015-11-18T23:10:23+00:00 d146d1525adfe1f08be9df0f72aac389e2370de5 - Tested: [unstable.bitmask.net] 
- Tested: [unstable.bitmask.net]
[bug] Don't limit sshd KexAlgorithms 2015-11-17T22:11:20+00:00 varac varacanero@zeromail.org 2015-11-09T16:12:00+00:00 41a8b76828d4dfa6345a6a04f9f68621fb46fcd7 - #7591 Net::SSH::Exception: could not settle on kex algorithm We need to disable the ssh hardened mode, because it will not work together with the net-ssh gem leap_cli is pinned to. All other options that would be included by this parameter are included by '$::sshd::tail_additional_options'. 
- #7591 Net::SSH::Exception: could not settle on kex algorithm

  We need to disable the ssh hardened mode, because it will not work
  together with the net-ssh gem leap_cli is pinned to.

  All other options that would be included by this parameter are
  included by '$::sshd::tail_additional_options'.
sshd: let nodes change default AllowTcpForwarding 2015-09-11T05:38:44+00:00 elijah elijah@riseup.net 2015-09-11T05:38:44+00:00 818930af8a05dc44372b99f8e589527050120431 






stop using bad nist curve for ssh host key (#6294)
2014-11-01T18:32:15+00:00

Micah Anderson
micah@leap.se

2014-11-01T14:36:48+00:00

5787c97b6f73dacae7f01adeff203287007c381d

update port parameter in site_sshd to be an array, otherwise
puppet errors about it being a Fixnum with new sshd module

Change-Id: I854d042edb98817169eef5e758d04d60d3c71dd5





update port parameter in site_sshd to be an array, otherwise
puppet errors about it being a Fixnum with new sshd module

Change-Id: I854d042edb98817169eef5e758d04d60d3c71dd5







Fix "Nagios ssh check is automatically added by the ssh module and cantains a wrong hostname on single node setup (Bug #5998)"
2014-08-21T10:41:02+00:00

varac
varacanero@zeromail.org

2014-08-21T10:16:43+00:00

db6e7a72941aaf593f8cb47fa0061f39ebb29b30

before, the ssh module added this check, resulting in a wrong
hostname and the port was always '22'.

manage_nagios parameter is boolean, so we use false instead of 'no'

manually add check_ssh to nagios (#5998)





before, the ssh module added this check, resulting in a wrong
hostname and the port was always '22'.

manage_nagios parameter is boolean, so we use false instead of 'no'

manually add check_ssh to nagios (#5998)







Add missing scope to top-level sshd class, passing necessary parameters
2014-05-27T23:55:41+00:00

Micah Anderson
micah@leap.se

2014-05-27T23:45:00+00:00

382d1cb4aea6e4a2e6fb101346e46bb8a01dbc10

for configuration (#3108)

Change-Id: I4f94a47d47a40bfc6835359e7781707f96e91db0





for configuration (#3108)

Change-Id: I4f94a47d47a40bfc6835359e7781707f96e91db0







Switch away from site_config::sshd and instead just include site_sshd
2014-05-27T23:55:32+00:00

Micah Anderson
micah@leap.se

2014-05-27T19:11:45+00:00

120cbfd46b79cfec36c17ae6deb7fc51f9094594

The existing site_config::sshd had a non-functioning 'include sshd' line
in it that was not doing what was expected (this was supposed to include
the sshd module, but due to scoping was including itself).

It seemed better to eliminate some of the unused pieces and consolidate
into one config location.

Change-Id: I79dd904e696ca646180a09abbb03b5361dfc8ab9





The existing site_config::sshd had a non-functioning 'include sshd' line
in it that was not doing what was expected (this was supposed to include
the sshd module, but due to scoping was including itself).

It seemed better to eliminate some of the unused pieces and consolidate
into one config location.

Change-Id: I79dd904e696ca646180a09abbb03b5361dfc8ab9