about summary refs log tree commit diff
path: root/nixos/modules/security
AgeCommit message (Expand)AuthorFilesLines
2020-04-18Merge pull request #85365 from immae/fix_acme_postrunworldofpeace1-1/+6
2020-04-17nixos/acme: Fix postRun in acme certificate being ran at every runIsmaël Bouya1-1/+6
2020-04-16Revert "nixos/acme: Fix allowKeysForGroup not applying immediately"Arian van Putten1-6/+0
2020-04-14acme: share accounts between certificatesLucas Savva1-1/+2
2020-04-09acme: create certificates in subdirectoryJörg Thalheim1-2/+2
2020-03-29nixos/acme: don't depend on multi-user.target inside a containerMaximilian Bosch1-1/+1
2020-03-22nixos/duosec: rename ikey option to integrationKeyAaron Andersen1-2/+3
2020-03-22nixos/duosec: replace insecure skey option with secure secretKeyFile optionAaron Andersen1-21/+40
2020-03-21nixos/duosec: fix indentationAaron Andersen1-16/+16
2020-03-15Merge pull request #72029 from lschuermann/tpm2-moduleSilvan Mosberger1-0/+185
2020-03-15nixos/tpm2: initLeon Schuermann1-0/+185
2020-03-12nixos/sshd: add authorizedKeysCommand and authorizedKeysCommandUser optionsAaron Andersen1-4/+2
2020-03-07Merge pull request #81369 from mweinelt/pr/acme-chmodSilvan Mosberger1-5/+6
2020-03-04nixos/acme: force symlink from fullchain.pem to cert.pemYegor Timoshenko1-1/+1
2020-03-03Merge pull request #80900 from emilazy/acme-must-stapleYegor Timoshenko1-2/+26
2020-03-03Merge pull request #80856 from emilazy/adjust-acmeYegor Timoshenko1-4/+15
2020-03-01Merge pull request #81371 from mweinelt/pr/acme-autostartYegor Timoshenko1-0/+1
2020-03-01Merge pull request #80920 from worldofpeace/rngd-cleanup-shutdownworldofpeace1-0/+7
2020-02-29nixos/acme: apply chmod and ownership unconditionallyMartin Weinelt1-5/+6
2020-02-29nixos/acme: add extraLegoRenewFlags optionEmily1-1/+9
2020-02-29nixos/acme: add ocspMustStaple optionEmily1-2/+18
2020-02-29nixos/acme: adjust renewal timer optionsEmily1-4/+15
2020-02-29nixos/acme: renew after rebuild and on bootMartin Weinelt1-0/+1
2020-02-23nixos/rngd: fix clean shutdownworldofpeace1-0/+7
2020-02-23nixos/acme: move the crt to fullchain.pemEmily1-3/+3
2020-02-12Merge pull request #71302 from tokudan/encrypted-swap-entropy-fixMichele Guerini Rocco1-1/+4
2020-02-10Merge pull request #77578 from m1cr0man/masterFlorian Klink2-44/+131
2020-02-10nixos/sudo: Fix extraRules example renderingSilvan Mosberger1-17/+19
2020-02-09nixos/acme: Update release note, remove redundant requiresLucas Savva1-3/+13
2020-02-09nixos/acme: Fix b.example.com testLucas Savva1-2/+0
2020-02-09nixos/acme: add dns-01 test, fix cert locating bugLucas Savva1-4/+7
2020-02-08security.rngd: start rngd during early boot to reduce entropy starvation due ...Daniel Frank1-1/+4
2020-02-03nixos/acme: simplify email resolve logicLucas Savva1-3/+2
2020-01-30nixos/duosec: fix configuration issue with "groups" optionAaron Andersen1-3/+13
2020-01-19nixos/acme: fix some descriptions, default acceptTerms to falseLucas Savva2-11/+34
2020-01-15nixos/acme: ignore tmpfiles rules for null webrootsLucas Savva1-5/+5
2020-01-12nixos/acme: Add logic to select right email addressLucas Savva1-1/+2
2020-01-12nixos/acme: replace simp-le with lego clientLucas Savva2-40/+103
2020-01-09nixos/pam: cleanup services (#76885)Jörg Thalheim1-3/+0
2020-01-06treewide: use attrs instead of list for types.loaOf optionsrnhmjoj5-26/+24
2020-01-03pam: remove unused ftp serviceJörg Thalheim1-1/+0
2020-01-03pam: remove cups serviceJörg Thalheim1-1/+0
2020-01-03screen: move pam service to moduleJörg Thalheim1-1/+0
2019-12-19nixos/acme: implement postRun using ExecStartPostBen Price1-2/+2
2019-12-10Merge pull request #75343 from worldofpeace/polkit-no-root-adminworldofpeace1-3/+2
2019-12-10nixos/treewide: Move rename.nix imports to their respective modulesSilvan Mosberger5-1/+19
2019-12-09nixos/polkit: remove root from adminIdentitiesworldofpeace1-3/+2
2019-11-13nixos/acme: Fix allowKeysForGroup not applying immediately (#72056)Silvan Mosberger1-0/+6
2019-11-03pam_mount: change order of lines in pam_mount.confB YI1-3/+3
2019-10-30nixos/modules/security/acme.nix: add server optionFélix Baylac-Jacqué1-16/+30
generated by cgit-pink 1.4.1 (git 2.36.1) at 2024-08-15 10:00:55 +0000