From 2bb6c5ecb8fb374c096bfff7f7290e8d33b64315 Mon Sep 17 00:00:00 2001 From: 12ww1160 <12ww1160@confdroid.com> Date: Mon, 13 Apr 2026 16:38:07 +0200 Subject: [PATCH] OP#575 finish sshd config file --- manifests/params.pp | 7 +++++++ templates/sshd_custom_conf.erb | 4 +++- 2 files changed, 10 insertions(+), 1 deletion(-) diff --git a/manifests/params.pp b/manifests/params.pp index 7eb6436..6161639 100644 --- a/manifests/params.pp +++ b/manifests/params.pp @@ -184,6 +184,12 @@ # additional information in the SSH version banner. This can be used for # branding purposes, but should be used with caution as it can potentially # leak information about the server that could be useful to attackers. +# @param [String] ssh_banner setting for sshd_config. +# Default is 'none', which means that no banner will be displayed to users +# when they connect, but can be set to a valid file path if you want to +# display a custom banner message to users when they connect. This can be used +# to display legal notices, security warnings, or other information to users when +# they connect to the SSH server. ############################################################################## class confdroid_ssh::params ( @@ -249,6 +255,7 @@ class confdroid_ssh::params ( String $ssh_permit_tunnel = 'no', String $ssh_chroot_directory = 'none', String $ssh_version_addendum = 'none', + String $ssh_banner = 'none', ) { # default facts diff --git a/templates/sshd_custom_conf.erb b/templates/sshd_custom_conf.erb index 453bc98..530322a 100644 --- a/templates/sshd_custom_conf.erb +++ b/templates/sshd_custom_conf.erb @@ -67,4 +67,6 @@ PidFile <%= @ssh_pid_file %> MaxStartups <%= @ssh_max_startups %> PermitTunnel <%= @ssh_permit_tunnel %> ChrootDirectory <%= @ssh_chroot_directory %> -VersionAddendum <%= @ssh_version_addendum %> \ No newline at end of file +VersionAddendum <%= @ssh_version_addendum %> + +Banner <%= @ssh_banner %> \ No newline at end of file