diff options
author | Alyssa Ross <hi@alyssa.is> | 2019-09-08 00:27:26 +0000 |
---|---|---|
committer | Alyssa Ross <hi@alyssa.is> | 2019-09-16 22:10:22 +0000 |
commit | 74758dadc4f59292d199f4d1bd5770348dad043b (patch) | |
tree | ef82a49fe6881008f58b27e24ec09e992818c664 /modules/ssh | |
parent | 7e2ba111a357400dbcb25fd5a88239aa99a2d447 (diff) | |
download | nixlib-74758dadc4f59292d199f4d1bd5770348dad043b.tar nixlib-74758dadc4f59292d199f4d1bd5770348dad043b.tar.gz nixlib-74758dadc4f59292d199f4d1bd5770348dad043b.tar.bz2 nixlib-74758dadc4f59292d199f4d1bd5770348dad043b.tar.lz nixlib-74758dadc4f59292d199f4d1bd5770348dad043b.tar.xz nixlib-74758dadc4f59292d199f4d1bd5770348dad043b.tar.zst nixlib-74758dadc4f59292d199f4d1bd5770348dad043b.zip |
modules/ssh: set StrictModes to no
This is required for non-root public key login because sshd doesn't like the permissions on /nix/store.
Diffstat (limited to 'modules/ssh')
-rw-r--r-- | modules/ssh/default.nix | 1 |
1 files changed, 1 insertions, 0 deletions
diff --git a/modules/ssh/default.nix b/modules/ssh/default.nix index 74014c76b025..816992945ed2 100644 --- a/modules/ssh/default.nix +++ b/modules/ssh/default.nix @@ -22,6 +22,7 @@ in ''; services.openssh.authorizedKeysFiles = [ "${./keys}/%u.keys" ]; + services.openssh.strictModes = false; users.users.root.openssh.authorizedKeys.keyFiles = [ ./keys/qyliss.keys ]; |