Age | Commit message (Collapse) | Author | |
---|---|---|---|
2012-06-05 | new style for 2.7 | mh | |
2011-07-21 | Adding PrintMotd parameter to all templates and setting per-distro default value | Silvio Rhatto | |
2011-07-13 | Removing sshd_use_strong_ciphers parameter as sshd_hardened_ssl does the job | Silvio Rhatto | |
2011-07-13 | Merge branch 'master' of git://labs.riseup.net/shared-sshd | Silvio Rhatto | |
2011-06-21 | New opt-in support to only use strong SSL ciphers and MACs. | intrigeri | |
The new configuration variable is $sshd_hardened_ssl. Settings were stolen from https://github.com/ioerror/duraconf.git. | |||
2011-02-23 | Changing strong cipher to aes128-crt | Silvio Rhatto | |
2011-02-23 | Changing parameter name sshd_perfect_forward_secrecy to ↵ | Silvio Rhatto | |
sshd_use_strong_ciphers as sshd already does PFS | |||
2011-02-21 | remove HostbasedUsesNameFromPacketOnly yes from Debian sshd_config ↵ | Micah Anderson | |
templates. This is not set in the Debian templates by default, and the default is actually no, not yes. If someone wishes to make a configuration variable they can, otherwise head/tail_additional options can be used | |||
2011-02-19 | Merge branch 'master' of git://labs.riseup.net/shared-sshd | Silvio Rhatto | |
Conflicts: templates/sshd_config/Debian_squeeze.erb | |||
2011-02-13 | Merge branch 'master' of git://labs.riseup.net/shared-sshd | Silvio Rhatto | |
2010-12-16 | Introducing perfect forward secrecy for SSH | Silvio Rhatto | |
2010-12-14 | "ChallengeResponseAuthentication no" was being hardcoded later in the Debian ↵ | Micah Anderson | |
Lenny sshd_config template, even though we offer it as a variable. With this commit, the variable will actually work, rather than be overriden | |||
2010-10-21 | lenny already has AcceptEnv by default | mh | |
2010-10-16 | Syntax fix. | intrigeri | |
2010-10-16 | New option sshd_ports that obsoletes sshd_port. | intrigeri | |
Backward compatibility is preserved. | |||
2010-10-16 | Cleanup templates: sshd_port is guaranteed by init.pp not to be empty. | intrigeri | |
2010-10-03 | Actually allow enabling ChallengeResponseAuthentication on Debian Lenny. | intrigeri | |
2009-12-27 | PrintMotd using default OpenSSH setting | Silvio Rhatto | |
2009-07-07 | Template out the possibility of specifying the key word 'off' to the | Micah Anderson | |
$sshd_port parameter, which simply puts a comment in front of that option, rather than specifying it. | |||
2009-07-07 | replace the sshd_additional_options variable with two, one called | Micah Anderson | |
sshd_head_additional_options and one called sshd_tail_additional_options. the first puts the value at the beginning of the file, and the second at the end. This is necessary due to some option ordering requiring things to be before others | |||
2008-12-07 | Fix location of default sftp-server on Debian, and uncomment the sftp | Micah Anderson | |
configuration line to get the sshd_config file defaults to be more like the standard shipped defaults from Debian | |||
2008-10-27 | Debian's sshd config typically has PrintMotd no set because its already ↵ | Micah Anderson | |
printed via PAM. Without it set, it is defaulted to 'yes', which results in the MOTD being printed twice, so we return the Debian default configuration in this commit | |||
2008-10-20 | new options, cleaned up real_ hack | mh | |
git-svn-id: https://svn/ipuppet/trunk/modules/sshd@2527 d66ca3ae-40d7-4aa7-90d4-87d79ca94279 | |||
2008-09-29 | merged with riseup | mh | |
git-svn-id: https://svn/ipuppet/trunk/modules/sshd@2263 d66ca3ae-40d7-4aa7-90d4-87d79ca94279 |