[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
branch master updated: hydra: bayfront: Disable openssh password authent
|
From: |
Christopher Baines |
|
Subject: |
branch master updated: hydra: bayfront: Disable openssh password authentication. |
|
Date: |
Sat, 02 May 2020 04:42:55 -0400 |
This is an automated email from the git hooks/post-receive script.
cbaines pushed a commit to branch master
in repository maintenance.
The following commit(s) were added to refs/heads/master by this push:
new 107ac6c hydra: bayfront: Disable openssh password authentication.
107ac6c is described below
commit 107ac6cf54dc0d3f663069eba16d810fcf212fef
Author: Christopher Baines <address@hidden>
AuthorDate: Sat May 2 09:41:15 2020 +0100
hydra: bayfront: Disable openssh password authentication.
Hopefully this will reduce the failed connection attempts.
* hydra/bayfront.scm (services): password-authentication? to #f for
the openssh-service-type.
---
hydra/bayfront.scm | 6 +++++-
1 file changed, 5 insertions(+), 1 deletion(-)
diff --git a/hydra/bayfront.scm b/hydra/bayfront.scm
index 568fb16..ced6a31 100644
--- a/hydra/bayfront.scm
+++ b/hydra/bayfront.scm
@@ -4,7 +4,7 @@
(sysadmin people) (sysadmin services)
(sysadmin dns) (sysadmin web))
(use-service-modules admin base certbot cuirass dns networking shepherd web
- monitoring)
+ monitoring ssh)
(use-package-modules admin certs ci linux ssh tls vim package-management web
wget)
(define %sysadmins
@@ -239,6 +239,10 @@ Happy hacking!\n"))
#:nginx-config-file
(file-append %nginx-config
"/bayfront.conf"))
+ (openssh-service-type
+ config => (openssh-configuration
+ (inherit config)
+ (password-authentication? #f)))
(cuirass-service-type
config => (cuirass-configuration
(inherit config)
| [Prev in Thread] |
Current Thread |
[Next in Thread] |
- branch master updated: hydra: bayfront: Disable openssh password authentication.,
Christopher Baines <=