leap_platform.git/puppet/modules/site_sshd/manifests, branch version/0.9.x [leap_platform] Notify Exec[shorewall_check] not Service[shorew..] 2016-07-13T08:46:05+00:00 varac varacanero@zeromail.org 2016-06-13T18:11:23+00:00 f3f78ebaf5f3fd3233bc35596fefb51f6e5ed9d9 Latest shorewall module does `shorewall check` (executed by `Exec[shorewall_check]`) so every related resource change must notify this Exec instead of `Service[shorewall]` as before. 
Latest shorewall module does `shorewall check` (executed
by `Exec[shorewall_check]`) so every related resource change
must notify this Exec instead of `Service[shorewall]` as before.
[style] lint further more 2016-04-25T19:41:20+00:00 varac varacanero@zeromail.org 2016-04-25T16:21:48+00:00 f2f2c7391056c252523730cd76ab759db9117c9c - ignore puppet lint error about inheriting from different namespace 
- ignore puppet lint error about inheriting from different namespace
Allow ecdsa hostkeys (#7642) until we can safely transition providers to 2016-02-11T15:35:39+00:00 Micah micah@leap.se 2016-02-09T21:47:52+00:00 70444eaf7b07affa832795f7e520c9ef2bd53791 better key algorithm choices. Change-Id: I6b9ec83dbfbf15d1b65e14145bf625db6517f6b7 
better key algorithm choices.

Change-Id: I6b9ec83dbfbf15d1b65e14145bf625db6517f6b7
[bug] Don't enable storedconfig in sshd class 2015-11-28T21:53:21+00:00 varac varacanero@zeromail.org 2015-11-28T21:53:21+00:00 8c7a2c7d7f84d56f395556aa893d8bb426c24178 - Related: #7615 
- Related: #7615
[bug] Use right sshd Ciphers and MACs for wheezy 2015-11-18T23:10:23+00:00 varac varacanero@zeromail.org 2015-11-18T23:10:23+00:00 d146d1525adfe1f08be9df0f72aac389e2370de5 - Tested: [unstable.bitmask.net] 
- Tested: [unstable.bitmask.net]
[bug] Don't limit sshd KexAlgorithms 2015-11-17T22:11:20+00:00 varac varacanero@zeromail.org 2015-11-09T16:12:00+00:00 41a8b76828d4dfa6345a6a04f9f68621fb46fcd7 - #7591 Net::SSH::Exception: could not settle on kex algorithm We need to disable the ssh hardened mode, because it will not work together with the net-ssh gem leap_cli is pinned to. All other options that would be included by this parameter are included by '$::sshd::tail_additional_options'. 
- #7591 Net::SSH::Exception: could not settle on kex algorithm

  We need to disable the ssh hardened mode, because it will not work
  together with the net-ssh gem leap_cli is pinned to.

  All other options that would be included by this parameter are
  included by '$::sshd::tail_additional_options'.
sshd: let nodes change default AllowTcpForwarding 2015-09-11T05:38:44+00:00 elijah elijah@riseup.net 2015-09-11T05:38:44+00:00 818930af8a05dc44372b99f8e589527050120431 






stop using bad nist curve for ssh host key (#6294)
2014-11-01T18:32:15+00:00

Micah Anderson
micah@leap.se

2014-11-01T14:36:48+00:00

5787c97b6f73dacae7f01adeff203287007c381d

update port parameter in site_sshd to be an array, otherwise
puppet errors about it being a Fixnum with new sshd module

Change-Id: I854d042edb98817169eef5e758d04d60d3c71dd5





update port parameter in site_sshd to be an array, otherwise
puppet errors about it being a Fixnum with new sshd module

Change-Id: I854d042edb98817169eef5e758d04d60d3c71dd5







Fix "Nagios ssh check is automatically added by the ssh module and cantains a wrong hostname on single node setup (Bug #5998)"
2014-08-21T10:41:02+00:00

varac
varacanero@zeromail.org

2014-08-21T10:16:43+00:00

db6e7a72941aaf593f8cb47fa0061f39ebb29b30

before, the ssh module added this check, resulting in a wrong
hostname and the port was always '22'.

manage_nagios parameter is boolean, so we use false instead of 'no'

manually add check_ssh to nagios (#5998)





before, the ssh module added this check, resulting in a wrong
hostname and the port was always '22'.

manage_nagios parameter is boolean, so we use false instead of 'no'

manually add check_ssh to nagios (#5998)







Add missing scope to top-level sshd class, passing necessary parameters
2014-05-27T23:55:41+00:00

Micah Anderson
micah@leap.se

2014-05-27T23:45:00+00:00

382d1cb4aea6e4a2e6fb101346e46bb8a01dbc10

for configuration (#3108)

Change-Id: I4f94a47d47a40bfc6835359e7781707f96e91db0





for configuration (#3108)

Change-Id: I4f94a47d47a40bfc6835359e7781707f96e91db0