Hi,
On 13/01/15 05:00, aldiyen wrote:
Anyone know why the NixOS PAM config that gets generated when the sshAgentAuth
setting is set to true includes files owned by the user (within that user's
home
directory)?
It seems like this could be rather insecure, given that an attacker who
Perhaps it should be made configurable (on a per service basis), with a
more secure/best-practice type default, so it can be overriden as needed?
I would be happy to make the necessary changes and make a pull request if
so
On 1/13/15, 8:26 AM, Eelco Dolstra edols...@gmail.com wrote:
Hi,
On
Hey all,
Anyone know why the NixOS PAM config that gets generated when the sshAgentAuth
setting is set to true includes files owned by the user (within that user's
home directory)?
It seems like this could be rather insecure, given that an attacker who
obtained the ability to write files