about summary refs log tree commit diff
path: root/nixos/modules/security
AgeCommit message (Expand)AuthorFilesLines
2024-04-28Merge pull request #277626 from nbraud/nixos/pam/ssh-agent-auth-31611-fixThomas Gerbet1-3/+1
2024-04-22nixos/isolate: init moduleVir Chaudhury1-0/+133
2024-04-22nixos/duosec: Split `mkdir` mode into `chmod` command for clarityVictor Engmark1-2/+4
2024-04-13nixos: remove all uses of lib.mdDocstuebinm26-299/+295
2024-04-09nixos: improve many 'enable' descriptionsBjørn Forsman2-3/+3
2024-04-03More specific link to tag specNoah S-C1-1/+1
2024-04-02nixos/sudo: update command options enum for newer sudo versionNoah Santschi-Cooney1-2/+2
2024-03-28treewide: Fix all Nix ASTs in all markdown filesJanne Heß1-176/+190
2024-03-22nixos/pam: use services.fprintd.package for fprintd ruleNick Cao1-1/+1
2024-03-01Merge pull request #291951 from amarshall/zfs-pkgs-renamingAdam C. Stephens1-2/+2
2024-02-28nixos/pam/kwallet: rename option, allow setting packageK9001-16/+23
2024-02-27nixos/pam: Do not incorrectly use zfs.enableUnstable in assertionAndrew Marshall1-2/+2
2024-02-11Merge pull request #286857 from RaitoBezarius/cacertsRyan Lahfa1-1/+13
2024-02-11nixos/security/ca: enable support for compatibility bundlesRaito Bezarius1-1/+13
2024-02-08pam_usb, nixos/pam-usb: dropRaito Bezarius2-63/+0
2024-02-06nixos/acme: default to lets encrypt production URL instead of null, mention l...Sandro1-5/+7
2024-02-02nixos/pam: Add pam_intuneRhys Davies1-0/+3
2024-02-01Merge pull request #285587 from edef1c/wrapper-cve-2023-6246Pierre Bourdon1-0/+7
2024-02-01nixos/modules/security/wrappers: limit argv0 to 512 bytesedef1-0/+7
2024-01-31nixos/pam: remove pam_cgfsAdam Stephens1-3/+0
2024-01-19nixos/acme: fix assertion for renamed optionéclairevoyant1-2/+2
2024-01-18fix semi-colon missingmian | mian1-5/+5
2024-01-12nixos/pam: Secure default for `sshAgentAuth.authorizedKeysFiles`nicoo1-3/+1
2024-01-10Merge pull request #243169 from 2xsaiko/outgoing/krb5Peder Bergebakken Sundt4-5/+183
2024-01-08nixos/pam: Fix use of renamed `enableSSHAgentAuth` optionnicoo1-1/+1
2024-01-08Merge pull request #277620 from nbraud/nixos/pam/ssh-agent-auth-31611Maciej Krüger2-14/+41
2024-01-07Merge pull request #276499 from nbraud/nixos/pam/ssh-agent-authMaciej Krüger1-0/+7
2024-01-04nixos/sudo: Remove unused `enableSSHAgentAuth` let-bindingnicoo1-2/+0
2024-01-04nixos/pam: Warn on insecure `sshAgentAuth` configurationsnicoo1-0/+10
2024-01-03nixos/pam: Add `sshAgentAuth.authorizedKeysFiles` optionnicoo1-1/+24
2024-01-03nixos/pam: Rename option `enableSSHAgentAuth` to `sshAgentAuth.enable`nicoo1-12/+8
2024-01-01nixos/auditd: fix typoMaciej Krüger1-1/+1
2023-12-30nixos/pam: Assert that `authorizedKeysFiles` is non-empty when using `pam_ssh...nicoo1-0/+7
2023-12-29nixos/wrappers: order service after sysusers servicenikstur1-0/+1
2023-12-29nixos/ipa: replace activationScriptnikstur1-19/+27
2023-12-27Merge pull request #271326 from philiptaron/shutdown.targetnikstur4-5/+11
2023-12-24nixos/wrapper: add basename of the wrapped program to the wrappers name to ea...Sandro Jäckel1-2/+2
2023-12-24nixos/sudo-rs: Removed unused let-bindingnicoo1-2/+0
2023-12-21nixos/krb5: add h7x4 as maintainerMarco Rebhan1-1/+1
2023-12-21nixos/krb5: add myself as maintainer for module & testsMarco Rebhan1-0/+4
2023-12-21nixos/krb5: move to security.krb5Marco Rebhan4-5/+179
2023-12-11Merge pull request #270224 from SuperSandro2000/patch-2pennae1-8/+8
2023-12-10nixos/acme: add syntax highlighting to code blocksSandro1-8/+8
2023-11-30nixos/suid-sgid-wrappers: ensure correct ordering w.r.t. shutdown.targetPhilip Taron1-1/+2
2023-11-30nixos/duosec: ensure correct ordering w.r.t. shutdown.targetPhilip Taron1-2/+4
2023-11-30nixos/auditd: ensure correct ordering w.r.t. shutdown.targetPhilip Taron1-1/+3
2023-11-30nixos/apparmor: ensure correct ordering w.r.t. shutdown.targetPhilip Taron1-1/+2
2023-11-30Merge pull request #261702 from h7x4/replace-mkoption-with-mkpackageoptionWeijia Wang1-8/+1
2023-11-27treewide: use `mkPackageOption`h7x42-16/+2
2023-11-25nixos/sudo-rs: Move support for `pam_ssh_agent_auth(8)` to PAM's NixOS modulenicoo2-9/+8
generated by cgit-pink 1.4.1 (git 2.36.1) at 2024-07-01 05:34:23 +0000