Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | fix openssh manifest, as having a empty template do not work ( contrary to ↵ | Michael Scherer | 2011-06-16 | 1 | -1/+1 |
| | | | | what I (wrongly) tested :/ ) | ||||
* | allow to set a extension to the openssh config ( used to | Michael Scherer | 2011-06-15 | 1 | -2/+3 |
| | | | | add Match block ) | ||||
* | fix link for user and ssh keys | Michael Scherer | 2011-06-08 | 1 | -1/+2 |
| | |||||
* | use a define to avoid array flattening by puppet | Michael Scherer | 2011-06-08 | 1 | -12/+15 |
| | |||||
* | fix syntax | Nicolas Vigier | 2011-06-08 | 1 | -1/+1 |
| | |||||
* | add option to add symlinks on authorized_keys | Nicolas Vigier | 2011-06-08 | 1 | -1/+17 |
| | |||||
* | fix syntax | Nicolas Vigier | 2011-05-24 | 1 | -1/+1 |
| | |||||
* | add cron for ldap-sshkey2file every 10 minutes | Nicolas Vigier | 2011-05-24 | 1 | -1/+10 |
| | |||||
* | - seems I cannot use the variable in the template | Michael Scherer | 2011-01-17 | 1 | -1/+1 |
| | |||||
* | - fix directory ( this prevent login on rabbit ) | Michael Scherer | 2011-01-17 | 1 | -1/+1 |
| | |||||
* | reenable the module, to use on rabbit | Michael Scherer | 2011-01-14 | 1 | -3/+3 |
| | |||||
* | disable update of sshd_config with ldap for now | Nicolas Vigier | 2011-01-07 | 1 | -3/+3 |
| | |||||
* | disable tcp forwarding, so people cannot use our svn server to bounce to ↵ | Michael Scherer | 2011-01-07 | 1 | -1/+1 |
| | | | | others server | ||||
* | the previous trick didn't work as tags are dependent in the order of | Michael Scherer | 2010-11-23 | 3 | -24/+28 |
| | | | | declaration ( and that's bad (tm) ). This one is safer. | ||||
* | move the ldap key from ssh logic to openssh module ( more logical ), and add ↵ | Michael Scherer | 2010-11-23 | 2 | -0/+44 |
| | | | | the hook in openssh config file | ||||
* | - use pam for openssh ( I am not sure if we need to restrict its use | Michael Scherer | 2010-11-23 | 1 | -1/+1 |
| | | | | only on ldap hosts ) | ||||
* | - do not let file with passwords to be world readable | Michael Scherer | 2010-11-20 | 1 | -6/+1 |
| | | | | | | | | ( even if being readable by apache is not good either, but needed as the password is used by apache ) - use ldaps for sympa - use the 2 new facter macro and remove the version copied everywhere - remove hardcoded domain in bugzilla and others | ||||
* | - add openssh module | Michael Scherer | 2010-10-26 | 2 | -0/+152 |