Re: how to deploy common ssh_config and sshd_config settings on all hosts?
Hi Andy,
On 02/02/17 17:43, Andy Smith wrote:
> Hi Harald,
>
> On Thu, Feb 02, 2017 at 02:50:09PM +0100, Harald Dunkel wrote:
>>
>> Exactly. The central place in my case is a debian source package. It
>> provides binary meta-packages referencing other packages and some
>> /etc/service.d/local.conf files, extending the ususal /etc/service.conf
>> files provided by the service's binary package.
>
> If you are making your own Debian packages with all of your custom
> config already in them, then you could just put them in your own apt
> repository and point all your machines there. But you must have
> already thought of this so there must be some reason why that
> solution is not acceptable…
>
I already have these common packages in a local repository. They
Provide some common config settings, e.g. for exim4, rsyslog,
logrotate, local certificates, fonts, etc. Most important: They
depend on and recommend large lists of packages, helping to keep
all hosts in sync.
For openssh I have the problem that I can only override the whole
ssh_config and sshd_config files. I cannot *extend* them. I had
hoped to avoid the dpkg-divert.
Regards
Harri
Reply to: