more amazon networks to blacklist
[mirror/dsa-puppet.git] / modules / roles / manifests / security_upload.pp
1 class roles::security_upload {
2         file { '/srv/security.upload.debian.org':
3                 ensure  => directory,
4                 mode    => '2755',
5                 owner   => dak,
6                 group   => debadmin,
7         }
8
9         file { '/etc/ssh/userkeys/dak':
10                 ensure  => present,
11                 mode    => '644',
12                 owner   => dak,
13                 group   => debadmin,
14         }
15
16         vsftpd::site { 'security-upload':
17                 banner     => 'ftp.security.upload.debian.org FTP server',
18                 logfile    => '/var/log/ftp/vsftpd-security.upload.debian.org.log',
19                 writable   => true,
20                 readable   => false,
21                 listable   => false,
22                 chown_user => dak-unpriv,
23                 root       => '/srv/security.upload.debian.org/ftp',
24         }
25 }