diff options
| author | Micah Anderson <micah@riseup.net> | 2008-09-26 17:28:05 -0400 |
|---|---|---|
| committer | Micah Anderson <micah@riseup.net> | 2008-09-26 17:28:05 -0400 |
| commit | ba8d788f89e2e8676985b40553a9f6794a322217 (patch) | |
| tree | 2098ca97efe4762c05faf0122b29ca4de20b3c45 /manifests | |
| parent | 0a0236b107d255941c75305e0689f52551774435 (diff) | |
add the sshd_strict_modes variable, with the default set to yes
Diffstat (limited to 'manifests')
| -rw-r--r-- | manifests/init.pp | 10 |
1 files changed, 9 insertions, 1 deletions
diff --git a/manifests/init.pp b/manifests/init.pp index a58ee58..858e1b5 100644 --- a/manifests/init.pp +++ b/manifests/init.pp @@ -56,9 +56,13 @@ # Valid Values: yes or no # Default: yes # -# sshd_rsa_authentication: If you wat to enable RSA Authentication +# sshd_rsa_authentication: If you want to enable RSA Authentication # Valid Values: yes or no # Default: no +# +# sshd_strict_modes: If you want to set StrictModes (check file modes/ownership before accepting login) +# Valid Values: yes or no +# Default: yes class sshd { include sshd::client @@ -113,6 +117,10 @@ class sshd::base { '' => 'no', default => $sshd_rsa_authentication } + $real_sshd_strict_modes = $sshd_strict_modes ? { + '' => 'yes', + default => $sshd_strict_modes + } file { 'sshd_config': path => '/etc/ssh/sshd_config', |