Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Support Ubuntu 22.04 #245

Merged
merged 1 commit into from
Feb 21, 2023
Merged

Support Ubuntu 22.04 #245

merged 1 commit into from
Feb 21, 2023

Conversation

anders-larsson
Copy link
Contributor

From my testing this works correctly. Very similar configuration to 20.04. Only difference between files installed during installation and the configuration files in Puppet is that account required pam_access.so is added to the sshd PAM config file.

Anyone know if this line should be there or not? It exists on 20.04 too but not sure if it is an addition in Puppet or was in the original file.

WIP reason: facterdb does not contain facts for Ubuntu-22.04 and no spec tests are actually executed for said OS.

@anders-larsson anders-larsson marked this pull request as draft May 5, 2022 13:00
@anders-larsson
Copy link
Contributor Author

Convert it to draft to ensure it's not merged without proper testing.

@anders-larsson
Copy link
Contributor Author

Formatted the YAML configuration in data/os/Ubuntu/22.04.yaml to ensure there are no changes to the config lines in the PAM configuration files. Only comments are removed/updated.

However another change I found is that session optional pam_systemd.so gets added to /etc/pam.d/common-session-noninteractive because it is using the same configuration data as /etc/pam.d/common-session where it is present.

@anders-larsson anders-larsson marked this pull request as ready for review November 1, 2022 12:25
@ashish1099
Copy link

any update on this one ?

@anders-larsson anders-larsson changed the title WIP: Support Ubuntu 22.04 Support Ubuntu 22.04 Dec 28, 2022
@anders-larsson
Copy link
Contributor Author

Removed WIP. We've been using this code for quite a while now without any glaring issues.

@anders-larsson anders-larsson mentioned this pull request Jan 11, 2023
Closed
@anders-larsson
Copy link
Contributor Author

I see that there are a few yaml values with whitespaces before string ends. Should probably fix that. Also update README .

@anders-larsson
Copy link
Contributor Author

Making some fixes. Please wait with merging it.

@anders-larsson anders-larsson force-pushed the support_ubuntu2204 branch 2 times, most recently from 5608bce to 63641fd Compare January 11, 2023 14:41
@anders-larsson
Copy link
Contributor Author

Should be OK now. Had to rebase it too.

@Aman1994
Copy link

Aman1994 commented Jan 17, 2023
edited
Loading

@ghoneycutt How far away are we from getting this in production?

@treydock
Copy link
Contributor

@anders-larsson I think the default is to not enable pam_access. Spinning up a fresh ubuntu:22.04 container and installing openssh-server I see this:

# Uncomment and edit /etc/security/access.conf if you need to set complex
# access limits that are hard to express in sshd_config.
# account  required     pam_access.so

Also some improvements have been made to the testing of this module, can you do a rebase against master?

@anders-larsson
Copy link
Contributor Author

Will fix this tomorrow morning!

@treydock treydock mentioned this pull request Jan 31, 2023
Closed
@ashish1099
Copy link

everything is good now, can we please get this merged now ?
Thanks

@ghoneycutt ghoneycutt merged commit 2ec5209 into ghoneycutt:main Feb 21, 2023
@ghoneycutt
Copy link
Owner

Thank you for your efforts!

Released in v3.10.0

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
5 participants
@anders-larsson @ashish1099 @Aman1994 @treydock @ghoneycutt