Purge /etc/ssh/ssh[d]_config.d as well

saz / puppet-ssh

Puppet module to manage ssh server and client

http://forge.puppetlabs.com/saz/ssh

Other

123 stars 236 forks source link

Purge /etc/ssh/ssh[d]_config.d as well #389

Open jay7x opened 5 months ago

jay7x commented 5 months ago

OpenSSH supports loading drop-ins from /etc/ssh/ssh[d]_config.d directory for server/client configs these days. While the module allows to manage the whole /etc/ssh/ssh[d]_config file, some packages may drop their configuration files to the *.d directories also. I guess it'd be good idea to support purging those directories as well.

nvergottini commented 5 months ago

I submitted pull request #390 to add support for include files for sshd_config since the lack of include files breaks openssh server crypto policies in EL9. I didn't really think about adding support for ssh_config include files since I've never used this module to manage ssh_config, but it would be easy enough to add that support.

saz commented 1 month ago

I've just merged #390 which, as @nvergottini already stated, adds support for purging sshd_config.d, but not ssh_config.d. Feel free to send in a PR for it.