diff options
| author | tv <tv@krebsco.de> | 2019-04-28 14:54:55 +0200 |
|---|---|---|
| committer | tv <tv@krebsco.de> | 2019-04-28 14:54:55 +0200 |
| commit | 1040fa21a577128c7cb826a1e2bb57c448eb6d24 (patch) | |
| tree | 2b10e15fb48e98ff819eebf0eaf4e995d53cdfed /lass/3modules | |
| parent | 2124814a04c4052f73c935927931c85812421c43 (diff) | |
| parent | 915e4b843790d3e71bdccea124d4832ca042e456 (diff) | |
Merge remote-tracking branch 'prism/master'
Diffstat (limited to 'lass/3modules')
| -rw-r--r-- | lass/3modules/usershadow.nix | 9 |
1 files changed, 3 insertions, 6 deletions
diff --git a/lass/3modules/usershadow.nix b/lass/3modules/usershadow.nix index 51da2ec93..c3d4de84d 100644 --- a/lass/3modules/usershadow.nix +++ b/lass/3modules/usershadow.nix @@ -22,18 +22,15 @@ environment.systemPackages = [ usershadow ]; lass.usershadow.path = "${usershadow}"; security.pam.services.sshd.text = '' + auth required pam_exec.so expose_authtok /run/wrappers/bin/shadow_verify_pam ${cfg.pattern} + auth required pam_permit.so account required pam_permit.so - auth required pam_env.so envfile=${config.system.build.pamEnvironment} - auth sufficient pam_exec.so quiet expose_authtok ${usershadow}/bin/verify_pam ${cfg.pattern} - auth sufficient pam_unix.so likeauth try_first_pass - session required pam_env.so envfile=${config.system.build.pamEnvironment} session required pam_permit.so - session required pam_loginuid.so ''; security.pam.services.dovecot2 = { text = '' - auth required pam_exec.so debug expose_authtok log=/tmp/lol /run/wrappers/bin/shadow_verify_pam ${cfg.pattern} + auth required pam_exec.so expose_authtok /run/wrappers/bin/shadow_verify_pam ${cfg.pattern} auth required pam_permit.so account required pam_permit.so session required pam_permit.so |