From fe30b13bf7b11705ea9f74ba0ede607d815ecb68 Mon Sep 17 00:00:00 2001 From: Ben Vincent Date: Thu, 24 Apr 2025 22:57:01 +1000 Subject: [PATCH] feat: lxc updates - add virtual/lxc.yaml - add crypto crypto-policies-scripts - ensure ssh::server is managed --- hieradata/os/AlmaLinux/all_releases.yaml | 1 + hieradata/virtual/lxc.yaml | 1 + site/profiles/manifests/ssh/service.pp | 2 ++ 3 files changed, 4 insertions(+) create mode 100644 hieradata/virtual/lxc.yaml diff --git a/hieradata/os/AlmaLinux/all_releases.yaml b/hieradata/os/AlmaLinux/all_releases.yaml index 5a09a26..251649b 100644 --- a/hieradata/os/AlmaLinux/all_releases.yaml +++ b/hieradata/os/AlmaLinux/all_releases.yaml @@ -9,6 +9,7 @@ hiera_include: - profiles::almalinux::base profiles::packages::include: + crypto-policies-scripts: {} lzo: {} policycoreutils: {} unar: {} diff --git a/hieradata/virtual/lxc.yaml b/hieradata/virtual/lxc.yaml new file mode 100644 index 0000000..ed97d53 --- /dev/null +++ b/hieradata/virtual/lxc.yaml @@ -0,0 +1 @@ +--- diff --git a/site/profiles/manifests/ssh/service.pp b/site/profiles/manifests/ssh/service.pp index e334016..c75a625 100644 --- a/site/profiles/manifests/ssh/service.pp +++ b/site/profiles/manifests/ssh/service.pp @@ -2,6 +2,8 @@ # saz-ssh manages the service, this is just some additional stuff class profiles::ssh::service { + include ssh::server + # set sshd to start systemd::manage_dropin { 'after-network-online.conf': ensure => present,