configuration/common: Hotfix OpenSSH CVE-2024-6387
This commit is contained in:
parent
a080f84880
commit
9455fefe5d
@ -7,6 +7,9 @@
|
|||||||
PasswordAuthentication = false;
|
PasswordAuthentication = false;
|
||||||
KbdInteractiveAuthentication = false;
|
KbdInteractiveAuthentication = false;
|
||||||
PermitRootLogin = lib.mkDefault "no";
|
PermitRootLogin = lib.mkDefault "no";
|
||||||
|
|
||||||
|
# Hotfix CVE-2024-6387 https://github.com/NixOS/nixpkgs/pull/323753
|
||||||
|
LoginGraceTime = 0;
|
||||||
};
|
};
|
||||||
services.openssh.hostKeys = lib.mkForce [
|
services.openssh.hostKeys = lib.mkForce [
|
||||||
# Only create ed25519 host keys
|
# Only create ed25519 host keys
|
||||||
|
Loading…
Reference in New Issue
Block a user