This commit is contained in:
Truxnell 2024-04-11 19:51:37 +10:00
parent 49f293a574
commit 504e0b1feb
2 changed files with 7 additions and 0 deletions

View file

@ -52,6 +52,11 @@ with lib;
"d ${cfg.persistPath}/nixos/ssh/ 0755 root root -" #The - disables automatic cleanup, so the file wont be removed after a period "d ${cfg.persistPath}/nixos/ssh/ 0755 root root -" #The - disables automatic cleanup, so the file wont be removed after a period
]; ];
# set machine id for log continuity
environment.etc.machine-id.source = "${cfg.persistPath}/nixos/etc/machine-id";
# keep hardware clock adjustment data
environment.etc.adjtime.source = "${cfg.persistPath}/nixos/etc/adjtime";
}; };

View file

@ -27,6 +27,8 @@ in
{ {
security = { security = {
sudo.wheelNeedsPassword = cfg.wheelNeedsSudoPassword; sudo.wheelNeedsPassword = cfg.wheelNeedsSudoPassword;
# Don't bother with the lecture or the need to keep state about who's been lectured
security.sudo.extraConfig = "Defaults lecture=\"never\"";
pam.enableSSHAgentAuth = cfg.sshAgentAuth.enable; pam.enableSSHAgentAuth = cfg.sshAgentAuth.enable;