diff options
Diffstat (limited to 'hosts/sachiel/configuration.nix')
| -rw-r--r-- | hosts/sachiel/configuration.nix | 6 |
1 files changed, 6 insertions, 0 deletions
diff --git a/hosts/sachiel/configuration.nix b/hosts/sachiel/configuration.nix index 18bcae7..1f898cd 100644 --- a/hosts/sachiel/configuration.nix +++ b/hosts/sachiel/configuration.nix @@ -43,6 +43,7 @@ zoxide neovim htop + lynis ]; system.autoUpgrade = { @@ -78,6 +79,7 @@ ports = [ 8693 ]; settings = { PasswordAuthentication = false; + AllowUsers = [ username ]; X11Forwarding = false; PermitRootLogin = "no"; }; @@ -143,6 +145,10 @@ }; security.auditd.enable = true; + security.audit = { + enable = true; + rules = [ "-a exit,always -F arch=b64 -S execve" ]; + }; networking.firewall = { allowPing = false; |