diff options
| author | Alejandro Soto <alejandro@34project.org> | 2025-05-31 14:04:26 -0600 |
|---|---|---|
| committer | Alejandro Soto <alejandro@34project.org> | 2025-05-31 14:07:24 -0600 |
| commit | 9e6ffc4179348dc40192876e96015ec046d123ed (patch) | |
| tree | 5b9d122b03c104ae0faf85b462958f0f2b458fbe | |
| parent | 8d373388a956f80f04b11e43179eb5c9d4c3aea8 (diff) | |
sys/auth: enable rssh PAM module
| -rw-r--r-- | sys/auth/default.nix | 1 | ||||
| -rw-r--r-- | sys/auth/login.nix | 17 |
2 files changed, 18 insertions, 0 deletions
diff --git a/sys/auth/default.nix b/sys/auth/default.nix index 4678da9..ca2778a 100644 --- a/sys/auth/default.nix +++ b/sys/auth/default.nix @@ -1,5 +1,6 @@ { imports = [ + ./login.nix ./oath.nix ./openssh.nix ]; diff --git a/sys/auth/login.nix b/sys/auth/login.nix new file mode 100644 index 0000000..5bc8f2e --- /dev/null +++ b/sys/auth/login.nix @@ -0,0 +1,17 @@ +{ config, lib, pkgs, ... }: +with lib; { + # TODO + config = mkIf true { + security.pam = { + # TODO: altamente inseguro, ver problema con ~/.ssh/authorized_keys + # si es editado por un proceso malicioso + rssh = { + enable = true; + + settings = { + cue = true; + }; + }; + }; + }; +} |