public/nixpkgs
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

pam: add pam_wheel

Browse Source
This commit is contained in:
Luca Bruno 2014-05-16 22:37:44 +02:00
parent 0ab270770b
commit 804a958663
1 changed files with 10 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

10
nixos/modules/security/pam.nix
View File

@ -122,6 +122,14 @@ let
''; '';
}; };
requireWheel = mkOption {
default = false;
type = types.bool;
description = ''
Whether to permit root access only to members of group wheel.
'';
};
limits = mkOption { limits = mkOption {
description = '' description = ''
Attribute set describing resource limits. Defaults to the Attribute set describing resource limits. Defaults to the
@ -184,6 +192,8 @@ let
# Authentication management. # Authentication management.
${optionalString cfg.rootOK ${optionalString cfg.rootOK
"auth sufficient pam_rootok.so"} "auth sufficient pam_rootok.so"}
${optionalString cfg.requireWheel
"auth required pam_wheel.so use_uid"}
${optionalString cfg.logFailures ${optionalString cfg.logFailures
"auth required pam_tally.so"} "auth required pam_tally.so"}
${optionalString (config.security.pam.enableSSHAgentAuth && cfg.sshAgentAuth) ${optionalString (config.security.pam.enableSSHAgentAuth && cfg.sshAgentAuth)