diff options
| -rw-r--r-- | nixpkgs/nixos/modules/services/networking/ssh/sshd.nix | 9 |
1 files changed, 9 insertions, 0 deletions
diff --git a/nixpkgs/nixos/modules/services/networking/ssh/sshd.nix b/nixpkgs/nixos/modules/services/networking/ssh/sshd.nix index 91fc7d72bc6d..c7607dac4298 100644 --- a/nixpkgs/nixos/modules/services/networking/ssh/sshd.nix +++ b/nixpkgs/nixos/modules/services/networking/ssh/sshd.nix @@ -334,6 +334,13 @@ in ''; }; + strictModes = mkOption { + type = types.bool; + default = true; + description = '' + Whether sshd should check file modes and ownership of directories + ''; + }; }; users.users = mkOption { @@ -498,6 +505,8 @@ in UseDNS no ''} + StrictModes ${if cfg.strictModes then "yes" else "no"} + ''; assertions = [{ assertion = if cfg.forwardX11 then cfgc.setXAuthLocation else true; |