summaryrefslogtreecommitdiff
path: root/modules/services/openssh.nix
diff options
context:
space:
mode:
authorFuwn <[email protected]>2024-09-03 17:10:51 -0700
committerFuwn <[email protected]>2024-09-03 17:10:51 -0700
commitf45dc51a331a24f0c1f7fc08a5f1600cd1766e14 (patch)
tree68dac2e7d31ea70c60d947ad0a744aa41902c8a1 /modules/services/openssh.nix
parenttings (diff)
downloadnixos-config-f45dc51a331a24f0c1f7fc08a5f1600cd1766e14.tar.xz
nixos-config-f45dc51a331a24f0c1f7fc08a5f1600cd1766e14.zip
harden ssh
Diffstat (limited to 'modules/services/openssh.nix')
-rw-r--r--modules/services/openssh.nix4
1 files changed, 2 insertions, 2 deletions
diff --git a/modules/services/openssh.nix b/modules/services/openssh.nix
index b970945..b16ca8a 100644
--- a/modules/services/openssh.nix
+++ b/modules/services/openssh.nix
@@ -5,8 +5,8 @@
openFirewall = true;
settings = {
- UseDns = false;
- X11Forwarding = false;
+ PermitRootLogin = "no";
+ MaxAuthTries = 3;
KexAlgorithms = [
"curve25519-sha256"
generated by cgit v1.2.3 (git 2.25.1) at 2026-05-11 17:16:11 +0000