21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
|
# File 'manifests/rules/sshd_banner.pp', line 21
class cis_security_hardening::rules::sshd_banner (
Boolean $enforce = false,
String $banner_line = 'Banner /etc/issue.net',
) {
if $enforce {
$path = ($facts['os']['name'] == 'SLES' and $facts['os']['release']['major'] == '12') ? {
true => '/usr/etc/ssh/sshd_config',
default => '/etc/ssh/sshd_config',
}
file_line { 'sshd-banner':
ensure => present,
path => $path,
line => $banner_line,
match => '^#?Banner.*',
notify => Exec['reload-sshd'],
}
}
}
|