about summary refs log tree commit diff
path: root/nixos/modules/security
AgeCommit message (Expand)AuthorFilesLines
2024-06-26Merge pull request #322194 from Artturin/polkitaddpackageoptionArtturin1-6/+8
2024-06-25Merge pull request #316977 from eclairevoyant/fix-mkEnableOptionSandro3-5/+5
2024-06-24nixos/polkit: Add package optionArtturin1-6/+8
2024-06-22nixos/ipa: Lower default sssd debug_level (#310662)Benjamin Staffin1-2/+0
2024-06-22nixos/ipa: Make ipa_hostname configurable (#321588)Benjamin Staffin1-1/+13
2024-06-14Merge pull request #287611 from h7x4/nixos-module-fixup-kerberos-serverh7x42-10/+81
2024-06-14treewide: fix mkEnableOption usageéclairevoyant3-5/+5
2024-06-08nixos/kerberos_server: use krb format generator, plus misc cleanuph7x42-10/+81
2024-06-04nixos/acme: allow setting security.acme.defaults.server = null to keep old ac...Stéphan Kochen1-1/+1
2024-05-13nixos/confinement: Use prio 100 for RootDirectoryaszlig1-1/+1
2024-05-13nixos/systemd-confinement: Make / read-onlyaszlig1-0/+1
2024-05-13nixos/systemd-confinement: support ProtectSystem=/DynamicUser=Julien Moutinho1-14/+21
2024-04-28Merge pull request #277626 from nbraud/nixos/pam/ssh-agent-auth-31611-fixThomas Gerbet1-3/+1
2024-04-22nixos/isolate: init moduleVir Chaudhury1-0/+133
2024-04-22nixos/duosec: Split `mkdir` mode into `chmod` command for clarityVictor Engmark1-2/+4
2024-04-13nixos: remove all uses of lib.mdDocstuebinm26-299/+295
2024-04-09nixos: improve many 'enable' descriptionsBjørn Forsman2-3/+3
2024-04-03More specific link to tag specNoah S-C1-1/+1
2024-04-02nixos/sudo: update command options enum for newer sudo versionNoah Santschi-Cooney1-2/+2
2024-03-28treewide: Fix all Nix ASTs in all markdown filesJanne Heß1-176/+190
2024-03-22nixos/pam: use services.fprintd.package for fprintd ruleNick Cao1-1/+1
2024-03-01Merge pull request #291951 from amarshall/zfs-pkgs-renamingAdam C. Stephens1-2/+2
2024-02-28nixos/pam/kwallet: rename option, allow setting packageK9001-16/+23
2024-02-27nixos/pam: Do not incorrectly use zfs.enableUnstable in assertionAndrew Marshall1-2/+2
2024-02-11Merge pull request #286857 from RaitoBezarius/cacertsRyan Lahfa1-1/+13
2024-02-11nixos/security/ca: enable support for compatibility bundlesRaito Bezarius1-1/+13
2024-02-08pam_usb, nixos/pam-usb: dropRaito Bezarius2-63/+0
2024-02-06nixos/acme: default to lets encrypt production URL instead of null, mention l...Sandro1-5/+7
2024-02-02nixos/pam: Add pam_intuneRhys Davies1-0/+3
2024-02-01Merge pull request #285587 from edef1c/wrapper-cve-2023-6246Pierre Bourdon1-0/+7
2024-02-01nixos/modules/security/wrappers: limit argv0 to 512 bytesedef1-0/+7
2024-01-31nixos/pam: remove pam_cgfsAdam Stephens1-3/+0
2024-01-19nixos/acme: fix assertion for renamed optionéclairevoyant1-2/+2
2024-01-18fix semi-colon missingmian | mian1-5/+5
2024-01-12nixos/pam: Secure default for `sshAgentAuth.authorizedKeysFiles`nicoo1-3/+1
2024-01-10Merge pull request #243169 from 2xsaiko/outgoing/krb5Peder Bergebakken Sundt4-5/+183
2024-01-08nixos/pam: Fix use of renamed `enableSSHAgentAuth` optionnicoo1-1/+1
2024-01-08Merge pull request #277620 from nbraud/nixos/pam/ssh-agent-auth-31611Maciej Krüger2-14/+41
2024-01-07Merge pull request #276499 from nbraud/nixos/pam/ssh-agent-authMaciej Krüger1-0/+7
2024-01-04nixos/sudo: Remove unused `enableSSHAgentAuth` let-bindingnicoo1-2/+0
2024-01-04nixos/pam: Warn on insecure `sshAgentAuth` configurationsnicoo1-0/+10
2024-01-03nixos/pam: Add `sshAgentAuth.authorizedKeysFiles` optionnicoo1-1/+24
2024-01-03nixos/pam: Rename option `enableSSHAgentAuth` to `sshAgentAuth.enable`nicoo1-12/+8
2024-01-01nixos/auditd: fix typoMaciej Krüger1-1/+1
2023-12-30nixos/pam: Assert that `authorizedKeysFiles` is non-empty when using `pam_ssh...nicoo1-0/+7
2023-12-29nixos/wrappers: order service after sysusers servicenikstur1-0/+1
2023-12-29nixos/ipa: replace activationScriptnikstur1-19/+27
2023-12-27Merge pull request #271326 from philiptaron/shutdown.targetnikstur4-5/+11
2023-12-24nixos/wrapper: add basename of the wrapped program to the wrappers name to ea...Sandro Jäckel1-2/+2
2023-12-24nixos/sudo-rs: Removed unused let-bindingnicoo1-2/+0
generated by cgit-pink 1.4.1 (git 2.36.1) at 2024-07-18 02:30:01 +0000