1
0

configuration/common: Hotfix OpenSSH CVE-2024-6387

This commit is contained in:
clerie 2024-07-01 20:14:19 +02:00
parent a080f84880
commit 9455fefe5d
Signed by: clerie
GPG Key ID: BD9F56480870BAD2

View File

@ -7,6 +7,9 @@
PasswordAuthentication = false; PasswordAuthentication = false;
KbdInteractiveAuthentication = false; KbdInteractiveAuthentication = false;
PermitRootLogin = lib.mkDefault "no"; PermitRootLogin = lib.mkDefault "no";
# Hotfix CVE-2024-6387 https://github.com/NixOS/nixpkgs/pull/323753
LoginGraceTime = 0;
}; };
services.openssh.hostKeys = lib.mkForce [ services.openssh.hostKeys = lib.mkForce [
# Only create ed25519 host keys # Only create ed25519 host keys