Katherina Walshe-Grey
8d2d55e4c4
We've always had password authentication disabled, so it's not really doing much except periodically locking us out of our own servers when we misconfigure something
11 lines
171 B
Nix
11 lines
171 B
Nix
{ config, lib, pkgs, ... }:
|
|
|
|
{
|
|
services.openssh = {
|
|
enable = true;
|
|
settings = {
|
|
PasswordAuthentication = false;
|
|
PermitRootLogin = "no";
|
|
};
|
|
};
|
|
} |