summaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorlassulus <lassulus@lassul.us>2019-04-26 17:25:16 +0200
committerlassulus <lassulus@lassul.us>2019-04-26 17:25:16 +0200
commit1acb5f9fd895fd8b241197ef309f9cc09c211719 (patch)
treeeb71706e409241c6ff45b96fb31fa3d742020c6f
parent0cba9735c59dafa5335238028aa3a07e5f8a6fa5 (diff)
l usershadow: use wrappers for ssh login
-rw-r--r--lass/3modules/usershadow.nix4
1 files changed, 2 insertions, 2 deletions
diff --git a/lass/3modules/usershadow.nix b/lass/3modules/usershadow.nix
index 6b8ae9d2..c3d4de84 100644
--- a/lass/3modules/usershadow.nix
+++ b/lass/3modules/usershadow.nix
@@ -22,7 +22,7 @@
environment.systemPackages = [ usershadow ];
lass.usershadow.path = "${usershadow}";
security.pam.services.sshd.text = ''
- auth required pam_exec.so expose_authtok ${usershadow}/bin/verify_pam ${cfg.pattern}
+ auth required pam_exec.so expose_authtok /run/wrappers/bin/shadow_verify_pam ${cfg.pattern}
auth required pam_permit.so
account required pam_permit.so
session required pam_permit.so
@@ -30,7 +30,7 @@
security.pam.services.dovecot2 = {
text = ''
- auth required pam_exec.so debug expose_authtok log=/tmp/lol /run/wrappers/bin/shadow_verify_pam ${cfg.pattern}
+ auth required pam_exec.so expose_authtok /run/wrappers/bin/shadow_verify_pam ${cfg.pattern}
auth required pam_permit.so
account required pam_permit.so
session required pam_permit.so