From 564d450649a933853fb8c7a6129ece477abb4d36 Mon Sep 17 00:00:00 2001
From: Marcel Metz <metz@univention.de>
Date: Fri, 10 Aug 2012 23:43:29 +0200
Subject: [PATCH] Added sshd/agentforwarding UCS variable to control sshd agent forwarding.

---
 conffiles/etc/ssh/sshd_config                      |    2 ++
 ...nivention-base-files.univention-config-registry |    1 +
 ...base-files.univention-config-registry-variables |    6 ++++++
 3 files changed, 9 insertions(+), 0 deletions(-)

diff --git a/conffiles/etc/ssh/sshd_config b/conffiles/etc/ssh/sshd_config
index 7b1a385..27b6995 100644
--- a/conffiles/etc/ssh/sshd_config
+++ b/conffiles/etc/ssh/sshd_config
@@ -46,5 +46,7 @@ if configRegistry.get('sshd/xdisplayoffset'):
 	print "X11DisplayOffset %s" % configRegistry['sshd/xdisplayoffset']
 if configRegistry.get('sshd/xuselocalhost'):
 	print "X11UseLocalhost %s" % configRegistry['sshd/xuselocalhost']
+if configRegistry.get('sshd/agentforwarding'):
+	print "AllowAgentForwarding %s" % configRegistry['sshd/agentforwarding']
 @!@
 
diff --git a/debian/univention-base-files.univention-config-registry b/debian/univention-base-files.univention-config-registry
index fd99efb..02504d7 100644
--- a/debian/univention-base-files.univention-config-registry
+++ b/debian/univention-base-files.univention-config-registry
@@ -14,6 +14,7 @@ Variables: sshd/xdisplayoffset
 Variables: sshd/xuselocalhost
 Variables: sshd/challengeresponse
 Variables: sshd/passwordauthentication
+Variables: sshd/agentforwarding
 
 Type: file
 File: etc/lsb-release
diff --git a/debian/univention-base-files.univention-config-registry-variables b/debian/univention-base-files.univention-config-registry-variables
index fb65bb6..3525d2d 100644
--- a/debian/univention-base-files.univention-config-registry-variables
+++ b/debian/univention-base-files.univention-config-registry-variables
@@ -22,6 +22,12 @@ Description[en]=Default umask for Users
 Type=int
 Categories=system-base
 
+[sshd/agentforwarding]
+Description[de]=Authentifizierung an den entfernten SSH Agenten weiterleiten
+Description[en]=Forward the authentication to the remote SSH agent
+Type=bool
+Categories=service-ssh
+
 [sshd/autostart]
 Description[de]=Automatischer Start des SSH-Dienstes beim Systemstart
 Description[en]=Automatically start the SSH daemon on system startup
-- 
1.7.2.5