Commit 938bc8b9 authored by fpletz's avatar fpletz 🚧
Browse files

luftschleuse: update lockd, no ssh pubkeys in logs

parent bdad5065
...@@ -22,11 +22,11 @@ ...@@ -22,11 +22,11 @@
] ]
}, },
"locked": { "locked": {
"lastModified": 1648303888, "lastModified": 1648338829,
"narHash": "sha256-SEetW7ijelQtGQJXNGkLBYvyc9Xe1Ig4qfFPBuPrZe8=", "narHash": "sha256-9Dz00LZ4ESvBfomk0N5LTb9OCbFyTbNnB6Xeg9DJzU0=",
"owner": "nix-community", "owner": "nix-community",
"repo": "home-manager", "repo": "home-manager",
"rev": "2f58d0a3de97f4c20efcc6ba00878acfd7b5665d", "rev": "b23bb05890f4a5f31f4e0d7bc2fe25bc6d4166ac",
"type": "github" "type": "github"
}, },
"original": { "original": {
...@@ -45,11 +45,11 @@ ...@@ -45,11 +45,11 @@
] ]
}, },
"locked": { "locked": {
"lastModified": 1648332461, "lastModified": 1648336745,
"narHash": "sha256-FNS3a5lbFyvRm0KWm2LvAQhUH9KnW1DT+p3OeJOjBHY=", "narHash": "sha256-or7TnSL3DzL7T7gAR93cd7SilAdN7ltMgnACJfP7nYk=",
"owner": "muccc", "owner": "muccc",
"repo": "luftschleuse2", "repo": "luftschleuse2",
"rev": "9d343858345fa72babe872a89060248dec0dcad8", "rev": "dc91c456b154481e665f4462df4f75dfcf7e9719",
"type": "github" "type": "github"
}, },
"original": { "original": {
......
...@@ -28,8 +28,7 @@ in ...@@ -28,8 +28,7 @@ in
kernelParams = [ "console=tty0" ]; kernelParams = [ "console=tty0" ];
}; };
hardware.enableRedistributableFirmware = false; hardware.enableRedistributableFirmware = true;
hardware.firmware = [ pkgs.firmwareLinuxNonfree ];
fileSystems = { fileSystems = {
"/" = { "/" = {
...@@ -75,6 +74,7 @@ in ...@@ -75,6 +74,7 @@ in
services.openssh.extraConfig = lib.concatMapStrings (t: '' services.openssh.extraConfig = lib.concatMapStrings (t: ''
Match User ${t.user} Match User ${t.user}
LogLevel ERROR
DisableForwarding yes DisableForwarding yes
AuthorizedKeysFile /etc/ssh/authorized_keys.d/%u /var/lib/authorized_keys/authorized_keys AuthorizedKeysFile /etc/ssh/authorized_keys.d/%u /var/lib/authorized_keys/authorized_keys
ForceCommand ${pkgs.writeScript "${t.user}.sh" '' ForceCommand ${pkgs.writeScript "${t.user}.sh" ''
...@@ -132,7 +132,6 @@ in ...@@ -132,7 +132,6 @@ in
extraConfig = '' extraConfig = ''
bind-interfaces bind-interfaces
interface=wlan0 interface=wlan0
bogus-priv
no-resolv no-resolv
dhcp-range=192.168.2.10,192.168.2.200,30m dhcp-range=192.168.2.10,192.168.2.200,30m
no-ping no-ping
......
Markdown is supported
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment