diff options
| author | varac <varacanero@zeromail.org> | 2016-04-18 15:27:10 +0200 |
|---|---|---|
| committer | varac <varacanero@zeromail.org> | 2017-02-23 10:56:21 +0100 |
| commit | ab5f9ccfe525e39dc1d6c77f12ad68878038f2c0 (patch) | |
| tree | 275837b9a1103d18848fd5e48a8cf05c505717f0 | |
| parent | 03235f93f32edf225128d24325b486531138e486 (diff) | |
Dont apply specific ssh parameters for wheezy
| -rw-r--r-- | puppet/modules/site_sshd/manifests/init.pp | 7 |
1 files changed, 1 insertions, 6 deletions
diff --git a/puppet/modules/site_sshd/manifests/init.pp b/puppet/modules/site_sshd/manifests/init.pp index a9202da4..7d5c728a 100644 --- a/puppet/modules/site_sshd/manifests/init.pp +++ b/puppet/modules/site_sshd/manifests/init.pp @@ -57,13 +57,8 @@ class site_sshd { # therefore we don't use it here, but include all other options # that would be applied by the 'hardened' parameter # not all options are available on wheezy - if ( $::lsbdistcodename == 'wheezy' ) { - $tail_additional_options = 'Ciphers aes256-ctr + $tail_additional_options = 'Ciphers chacha20-poly1305@openssh.com,aes256-gcm@openssh.com,aes256-ctr MACs hmac-sha2-512,hmac-sha2-256,hmac-ripemd160' - } else { - $tail_additional_options = 'Ciphers chacha20-poly1305@openssh.com,aes256-gcm@openssh.com,aes256-ctr -MACs hmac-sha2-512,hmac-sha2-256,hmac-ripemd160' - } ## ## SSHD SERVER CONFIGURATION |