You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: README.md
+18
Original file line number
Diff line number
Diff line change
@@ -124,6 +124,24 @@ Configure attributes:
124
124
125
125
This will enable the SFTP Server and chroot every user in the `sftpusers` group to the `/home/sftp/%u` directory.
126
126
127
+
## Extra Configuration Options
128
+
Extra configuration options can be appended to the client or server configuration files. This can be used to override statically set values, or add configuration options not otherwise available via attributes.
129
+
130
+
The syntax is as follows:
131
+
```
132
+
# => Extra Server Configuration
133
+
default['ssh-hardening']['ssh']['server']['extras'].tap do |extra|
default['ssh-hardening']['ssh']['client']['extras'].tap do |extra|
140
+
extra['PermitLocalCommand'] = 'no'
141
+
extra['Tunnel'] = 'no'
142
+
end
143
+
```
144
+
127
145
## Local Testing
128
146
129
147
For local testing you can use vagrant and Virtualbox of VMWare to run tests locally. You will have to install Virtualbox and Vagrant on your system. See [Vagrant Downloads](http://downloads.vagrantup.com/) for a vagrant package suitable for your system. For all our tests we use `test-kitchen`. If you are not familiar with `test-kitchen` please have a look at [their guide](http://kitchen.ci/docs/getting-started). We are writing our test with [InSpec](https://github.com/chef/inspec).
0 commit comments