]> git.donarmstrong.com Git - dsa-puppet.git/blobdiff - modules/ferm/templates/me.conf.erb
projects / dsa-puppet.git / blobdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | inline | side by side
restrict ssh to handel
[dsa-puppet.git] / modules / ferm / templates / me.conf.erb
diff --git a/modules/ferm/templates/me.conf.erb b/modules/ferm/templates/me.conf.erb
index 716233a8a9c967596ac057245d3a57295c856627..331ef52aab048a348963b3248b6a533b10d24f91 100644 (file)
--- a/modules/ferm/templates/me.conf.erb
+++ b/modules/ferm/templates/me.conf.erb
@@ -6,7 +6,7 @@
 <%=
 out = []
 
-restrict_ssh = %w{logtest01 geo1 geo2 geo3 bartok beethoven tchaikovsky schroeder}
+restrict_ssh = %w{logtest01 geo1 geo2 geo3 bartok beethoven tchaikovsky schroeder heininen handel}
 
 ssh4allowed = []
 ssh6allowed = []
@@ -25,7 +25,7 @@ if %w{bartok beethoven}.include?(hostname) then
        ssh6allowed << '$HOST_DEBIAN_V6'
 end
 ssh4allowed.length == 0 and ssh4allowed << '0.0.0.0/0'
-ssh6allowed.length == 0 and ssh6allowed << '::'
+ssh6allowed.length == 0 and ssh6allowed << '::/0'
 
 out << "@def $SSH_SOURCES    = (#{ssh4allowed.join(' ')});"
 out << "@def $SSH_V6_SOURCES = (#{ssh6allowed.join(' ')});"
Unnamed repository; edit this file 'description' to name the repository.