profile/base: Set default priority on SSHd options

The parent commit actually introduced an eval error with meshuggah, because the machine defined permitRootLogin. Setting these values to priority 1000 (which is what mkDefault does) makes sure that setting the value somewhere else always takes precedence (unless of course it has a value >= 1000). Signed-off-by: aszlig <aszlig@nix.build>
author: aszlig <aszlig@nix.build> 2018-04-21 00:36:26 +0200
committer: aszlig <aszlig@nix.build> 2018-04-21 00:36:26 +0200
commit: 805b8cec8489200e1c0dff569b432c7f786a69f9 (patch)
tree: c3570b113484045915bd82bc23b2af9d79c5f94a /modules/user/aszlig/profiles/base.nix
parent: 84baec05e499d60b8a5e27cc1303b64b38705734 (diff)
1 files changed, 3 insertions, 3 deletions
diff --git a/modules/user/aszlig/profiles/base.nix b/modules/user/aszlig/profiles/base.nix
index e79e3c61..cf84cff8 100644
--- a/modules/user/aszlig/profiles/base.nix
+++ b/modules/user/aszlig/profiles/base.nix
@@ -48,9 +48,9 @@ in {
       MaxRetentionSec=3month
     '';
 
-    services.openssh.passwordAuthentication = false;
-    services.openssh.permitRootLogin = "no";
-    services.openssh.challengeResponseAuthentication = false;
+    services.openssh.passwordAuthentication = lib.mkDefault false;
+    services.openssh.permitRootLogin = lib.mkDefault "no";
+    services.openssh.challengeResponseAuthentication = lib.mkDefault false;
 
     environment.systemPackages = with pkgs; [
       binutils
author	aszlig <aszlig@nix.build>	2018-04-21 00:36:26 +0200
committer	aszlig <aszlig@nix.build>	2018-04-21 00:36:26 +0200
commit	805b8cec8489200e1c0dff569b432c7f786a69f9 (patch)
tree	c3570b113484045915bd82bc23b2af9d79c5f94a /modules/user/aszlig/profiles/base.nix
parent	84baec05e499d60b8a5e27cc1303b64b38705734 (diff)