summaryrefslogtreecommitdiff
diff options
context:
space:
mode:
authorvarac <varacanero@zeromail.org>2016-04-18 15:27:10 +0200
committervarac <varacanero@zeromail.org>2017-02-23 10:56:21 +0100
commitab5f9ccfe525e39dc1d6c77f12ad68878038f2c0 (patch)
tree275837b9a1103d18848fd5e48a8cf05c505717f0
parent03235f93f32edf225128d24325b486531138e486 (diff)
Dont apply specific ssh parameters for wheezy
-rw-r--r--puppet/modules/site_sshd/manifests/init.pp7
1 files changed, 1 insertions, 6 deletions
diff --git a/puppet/modules/site_sshd/manifests/init.pp b/puppet/modules/site_sshd/manifests/init.pp
index a9202da4..7d5c728a 100644
--- a/puppet/modules/site_sshd/manifests/init.pp
+++ b/puppet/modules/site_sshd/manifests/init.pp
@@ -57,13 +57,8 @@ class site_sshd {
# therefore we don't use it here, but include all other options
# that would be applied by the 'hardened' parameter
# not all options are available on wheezy
- if ( $::lsbdistcodename == 'wheezy' ) {
- $tail_additional_options = 'Ciphers aes256-ctr
+ $tail_additional_options = 'Ciphers chacha20-poly1305@openssh.com,aes256-gcm@openssh.com,aes256-ctr
MACs hmac-sha2-512,hmac-sha2-256,hmac-ripemd160'
- } else {
- $tail_additional_options = 'Ciphers chacha20-poly1305@openssh.com,aes256-gcm@openssh.com,aes256-ctr
-MACs hmac-sha2-512,hmac-sha2-256,hmac-ripemd160'
- }
##
## SSHD SERVER CONFIGURATION