feat: manage ssh known hosts
- disable use of stored configs for ssh-known-hosts - manage the /etc/ssh/ssh_known_hosts content
This commit is contained in:
@@ -33,6 +33,7 @@ class profiles::base (
|
||||
include profiles::dns::base
|
||||
include profiles::pki::vault
|
||||
include profiles::ssh::sign
|
||||
include profiles::ssh::knownhosts
|
||||
include profiles::cloudinit::init
|
||||
include profiles::metrics::default
|
||||
include profiles::helpers::node_lookup
|
||||
|
||||
@@ -0,0 +1,12 @@
|
||||
# manage known hosts
|
||||
class profiles::ssh::knownhosts (
|
||||
Array $lines = [],
|
||||
) {
|
||||
file {'/etc/ssh/ssh_known_hosts':
|
||||
ensure => 'file',
|
||||
owner => 'root',
|
||||
group => 'root',
|
||||
mode => '0644',
|
||||
content => template('profiles/ssh/ssh_known_hosts.erb'),
|
||||
}
|
||||
}
|
||||
Reference in New Issue
Block a user