Merge tag 'refs/tags/0.10.0' into stable

Release 0.10.0
author: Micah Anderson <micah@riseup.net> 2017-11-28 11:35:01 -0500
committer: Micah Anderson <micah@riseup.net> 2017-11-28 11:35:01 -0500
commit: 0d251e2ceddd3e02ed8bba8725830689dbdd1397 (patch)
tree: 37d7096d9e458ca1e6431dff8a2f571553011c44 /puppet/modules/site_sshd
parent: 93a181d44e2d8163ae44945aac1b6477e268170d (diff)
parent: bf6c56d86c7ba45e7ca766d990a9e9162025e5ac (diff)
1 files changed, 1 insertions, 6 deletions
diff --git a/puppet/modules/site_sshd/manifests/init.pp b/puppet/modules/site_sshd/manifests/init.pp
index a9202da4..7d5c728a 100644
--- a/puppet/modules/site_sshd/manifests/init.pp
+++ b/puppet/modules/site_sshd/manifests/init.pp
@@ -57,13 +57,8 @@ class site_sshd {
   # therefore we don't use it here, but include all other options
   # that would be applied by the 'hardened' parameter
   # not all options are available on wheezy
-  if ( $::lsbdistcodename == 'wheezy' ) {
-    $tail_additional_options = 'Ciphers aes256-ctr
+  $tail_additional_options = 'Ciphers chacha20-poly1305@openssh.com,aes256-gcm@openssh.com,aes256-ctr
 MACs hmac-sha2-512,hmac-sha2-256,hmac-ripemd160'
-  } else {
-    $tail_additional_options = 'Ciphers chacha20-poly1305@openssh.com,aes256-gcm@openssh.com,aes256-ctr
-MACs hmac-sha2-512,hmac-sha2-256,hmac-ripemd160'
-  }
 
   ##
   ## SSHD SERVER CONFIGURATION
author	Micah Anderson <micah@riseup.net>	2017-11-28 11:35:01 -0500
committer	Micah Anderson <micah@riseup.net>	2017-11-28 11:35:01 -0500
commit	0d251e2ceddd3e02ed8bba8725830689dbdd1397 (patch)
tree	37d7096d9e458ca1e6431dff8a2f571553011c44 /puppet/modules/site_sshd
parent	93a181d44e2d8163ae44945aac1b6477e268170d (diff)
parent	bf6c56d86c7ba45e7ca766d990a9e9162025e5ac (diff)