alejandro-angulo/dotfiles
1
0
Fork 0
Code Issues Pull requests Actions Packages Projects Releases Wiki Activity

Address security issue in nixpkgs

Browse source 
See https://github.com/NixOS/nixpkgs/issues/31611
This commit is contained in:
Alejandro Angulo 2024-03-02 08:47:05 -08:00
parent 5b1df3ae73
commit 42a83db85e
Signed by: alejandro-angulo
GPG key ID: 75579581C74554B6
1 changed files with 6 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

7
systems/x86_64-linux/node/default.nix
View file

@ -85,7 +85,12 @@
apps.yubikey.enable = true;
};
security.pam.sshAgentAuth.enable = true;
security.pam.sshAgentAuth = {
enable = true;
# Addresses issue 31611
# See: https://github.com/NixOS/nixpkgs/issues/31611
authorizedKeysFiles = lib.mkForce ["/etc/ssh/authorized_keys.d/%u"];
};
security.pam.services.${config.aa.user.name}.sshAgentAuth = true;
boot.loader.systemd-boot.enable = true;