dala/nixos-config
1
0
Fork 0
Code Issues Pull requests Actions Packages Projects Releases Wiki Activity

Strengthen SSH auth

Browse source
This commit is contained in:
Victor Mignot 2024-07-27 11:43:04 +02:00
parent 67acb4e852
commit 1f09872ea7
Signed by: dala
GPG key ID: 5E7F2CE1BEAFED3D
1 changed files with 7 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

8
modules/server/network.nix
View file

@ -10,7 +10,13 @@ with lib;
config = { config = {
services.openssh = mkIf config.server.networking.enableSSH { services.openssh = mkIf config.server.networking.enableSSH {
enable = true; enable = true;
settings.PermitRootLogin = "no"; settings = {
StrictModes = true;
PermitRootLogin = "no";
PasswordAuthentication = false;
KbdInteractiveAuthentication = false;
PermitEmptyPasswords = "no";
};
}; };
networking.firewall.allowedTCPPorts = [ networking.firewall.allowedTCPPorts = [