Mercurial > repos > other > Puppet

annotate modules/ssh/spec/fixtures/sshd_config_ubuntu2204 @ 438:bb8f85c35113

Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
Manualy patch SSH module https://github.com/ghoneycutt/puppet-module-ssh/pull/377
author IBBoard <dev@ibboard.co.uk>
date Sun, 14 Aug 2022 11:44:25 +0100
parents
children
Ignore whitespace changes - Everywhere: Within whitespace: At end of lines:
rev   line source
438
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
1 # This file is being maintained by Puppet.
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
2 # DO NOT EDIT
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
3
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
4 # $OpenBSD: sshd_config,v 1.73 2005/12/06 22:38:28 reyk Exp $
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
5
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
6 # This is the sshd server system-wide configuration file. See
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
7 # sshd_config(5) for more information.
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
8
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
9 # This sshd was compiled with PATH=/usr/local/bin:/bin:/usr/bin
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
10
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
11 # The strategy used for options in the default sshd_config shipped with
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
12 # OpenSSH is to specify options with their default value where
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
13 # possible, but leave them commented. Uncommented options change a
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
14 # default value.
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
15
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
16 Include /etc/ssh/sshd_config.d/*.conf
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
17
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
18 #Port 22
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
19 Port 22
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
20 #Protocol 2,1
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
21 Protocol 2
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
22 #AddressFamily any
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
23 AddressFamily any
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
24
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
25 # HostKey for protocol version 1
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
26 #HostKey /etc/ssh/ssh_host_key
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
27 # HostKeys for protocol version 2
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
28 #HostKey /etc/ssh/ssh_host_rsa_key
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
29 #HostKey /etc/ssh/ssh_host_dsa_key
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
30
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
31 # Lifetime and size of ephemeral version 1 server key
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
32 #KeyRegenerationInterval 1h
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
33 #ServerKeyBits 1024
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
34 # Logging
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
35 # obsoletes QuietMode and FascistLogging
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
36 #SyslogFacility AUTH
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
37 SyslogFacility AUTH
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
38 #LogLevel INFO
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
39 LogLevel INFO
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
40
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
41 # Authentication:
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
42
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
43 #LoginGraceTime 120
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
44 LoginGraceTime 120
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
45 #PermitRootLogin yes
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
46 PermitRootLogin yes
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
47 #StrictModes yes
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
48 #MaxAuthTries 6
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
49
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
50 #RSAAuthentication yes
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
51 #PubkeyAuthentication yes
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
52 PubkeyAuthentication yes
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
53 #AuthorizedKeysFile .ssh/authorized_keys
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
54
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
55 # For this to work you will also need host keys in /etc/ssh/ssh_known_hosts
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
56 #RhostsRSAAuthentication no
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
57 # similar for protocol version 2
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
58 #HostbasedAuthentication no
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
59 HostbasedAuthentication no
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
60 # Change to yes if you don't trust ~/.ssh/known_hosts for
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
61 # RhostsRSAAuthentication and HostbasedAuthentication
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
62 #IgnoreUserKnownHosts no
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
63 IgnoreUserKnownHosts no
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
64 # Don't read the user's ~/.rhosts and ~/.shosts files
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
65 #IgnoreRhosts yes
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
66 IgnoreRhosts yes
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
67
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
68 # To disable tunneled clear text passwords, change to no here!
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
69 #PasswordAuthentication yes
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
70 PasswordAuthentication yes
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
71 #PermitEmptyPasswords no
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
72
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
73 # Change to no to disable s/key passwords
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
74 #ChallengeResponseAuthentication yes
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
75 ChallengeResponseAuthentication yes
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
76
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
77 # Kerberos options
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
78 #KerberosOrLocalPasswd yes
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
79 #KerberosTicketCleanup yes
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
80 #KerberosGetAFSToken no
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
81
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
82 # GSSAPI options
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
83 #GSSAPIAuthentication no
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
84 GSSAPIAuthentication yes
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
85
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
86 # Set this to 'yes' to enable PAM authentication, account processing,
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
87 # and session processing. If this is enabled, PAM authentication will
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
88 # be allowed through the ChallengeResponseAuthentication mechanism.
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
89 # Depending on your PAM configuration, this may bypass the setting of
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
90 # PasswordAuthentication, PermitEmptyPasswords, and
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
91 # "PermitRootLogin without-password". If you just want the PAM account and
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
92 # session checks to run without PAM authentication, then enable this but set
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
93 # ChallengeResponseAuthentication=no
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
94 #UsePAM no
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
95 UsePAM yes
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
96
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
97 # Accept locale-related environment variables
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
98 AcceptEnv LANG LC_CTYPE LC_NUMERIC LC_TIME LC_COLLATE LC_MONETARY LC_MESSAGES
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
99 AcceptEnv LC_PAPER LC_NAME LC_ADDRESS LC_TELEPHONE LC_MEASUREMENT
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
100 AcceptEnv LC_IDENTIFICATION LC_ALL
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
101 #AllowTcpForwarding yes
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
102 AllowTcpForwarding yes
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
103 #GatewayPorts no
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
104 #X11Forwarding no
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
105 X11Forwarding yes
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
106 #X11DisplayOffset 10
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
107 #X11UseLocalhost yes
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
108 X11UseLocalhost yes
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
109 #PrintMotd yes
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
110 PrintMotd yes
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
111 #PrintLastLog yes
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
112 #TCPKeepAlive yes
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
113 #UseLogin no
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
114 #UsePrivilegeSeparation yes
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
115 #PermitUserEnvironment no
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
116 #Compression delayed
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
117 #ClientAliveInterval 0
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
118 ClientAliveInterval 0
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
119 ClientAliveCountMax 3
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
120 #ShowPatchLevel no
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
121 #UseDNS yes
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
122 UseDNS no
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
123 #PidFile /var/run/sshd.pid
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
124 #MaxStartups 10:30:100
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
125 #MaxSessions 10
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
126
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
127 #PermitTunnel no
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
128 #ChrootDirectory none
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
129
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
130 # no default banner path
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
131 #Banner none
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
132 Banner none
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
133
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
134 # override default of no subsystems
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
135 Subsystem sftp /usr/lib/openssh/sftp-server
bb8f85c35113 Manualy patch SSH module
IBBoard <dev@ibboard.co.uk>
parents:
diff changeset
136