configuration.nix/hosts/skipper/security.nix

29 lines
610 B
Nix
Raw Normal View History

2023-11-04 16:12:45 +05:30
{ pkgs, ... }: {
2024-07-16 22:29:44 +05:30
imports = [ ../shared/certs ];
2023-04-07 20:55:19 +05:30
security = {
pam = {
services = {
passwd.enableGnomeKeyring = true;
login.enableGnomeKeyring = true;
2024-05-12 18:38:07 +05:30
hyprlock = { };
2023-04-07 20:55:19 +05:30
};
u2f = {
enable = true;
2024-07-14 18:54:14 +05:30
settings = {
authFile = "/persist/secrets/u2f/u2f_keys";
cue = true;
};
2023-04-07 20:55:19 +05:30
};
};
polkit.enable = true;
rtkit.enable = true;
sudo = {
2023-11-04 16:12:45 +05:30
package = pkgs.sudo.override { withInsults = true; };
2023-04-07 20:55:19 +05:30
extraConfig = ''
Defaults lecture="never"
'';
wheelNeedsPassword = true;
};
};
}