From ab5f9ccfe525e39dc1d6c77f12ad68878038f2c0 Mon Sep 17 00:00:00 2001
From: varac <varacanero@zeromail.org>
Date: Mon, 18 Apr 2016 15:27:10 +0200
Subject: Dont apply specific ssh parameters for wheezy

---
 puppet/modules/site_sshd/manifests/init.pp | 7 +------
 1 file changed, 1 insertion(+), 6 deletions(-)

diff --git a/puppet/modules/site_sshd/manifests/init.pp b/puppet/modules/site_sshd/manifests/init.pp
index a9202da4..7d5c728a 100644
--- a/puppet/modules/site_sshd/manifests/init.pp
+++ b/puppet/modules/site_sshd/manifests/init.pp
@@ -57,13 +57,8 @@ class site_sshd {
   # therefore we don't use it here, but include all other options
   # that would be applied by the 'hardened' parameter
   # not all options are available on wheezy
-  if ( $::lsbdistcodename == 'wheezy' ) {
-    $tail_additional_options = 'Ciphers aes256-ctr
+  $tail_additional_options = 'Ciphers chacha20-poly1305@openssh.com,aes256-gcm@openssh.com,aes256-ctr
 MACs hmac-sha2-512,hmac-sha2-256,hmac-ripemd160'
-  } else {
-    $tail_additional_options = 'Ciphers chacha20-poly1305@openssh.com,aes256-gcm@openssh.com,aes256-ctr
-MACs hmac-sha2-512,hmac-sha2-256,hmac-ripemd160'
-  }
 
   ##
   ## SSHD SERVER CONFIGURATION
-- 
cgit v1.2.3