diff options
author | Eelco Dolstra <eelco.dolstra@logicblox.com> | 2014-04-18 00:45:26 +0200 |
---|---|---|
committer | Eelco Dolstra <eelco.dolstra@logicblox.com> | 2014-04-18 00:45:26 +0200 |
commit | ffedee6ed523864dd5f871ffd85e3c2099d579a2 (patch) | |
tree | 56f38409025243eaffb154c518f6b525945c7231 /nixos/modules/config/gnu.nix | |
parent | e34a1589fe1e2cd37a4d47a0dbf6c5791719e0f1 (diff) | |
download | nixpkgs-ffedee6ed523864dd5f871ffd85e3c2099d579a2.tar nixpkgs-ffedee6ed523864dd5f871ffd85e3c2099d579a2.tar.gz nixpkgs-ffedee6ed523864dd5f871ffd85e3c2099d579a2.tar.bz2 nixpkgs-ffedee6ed523864dd5f871ffd85e3c2099d579a2.tar.lz nixpkgs-ffedee6ed523864dd5f871ffd85e3c2099d579a2.tar.xz nixpkgs-ffedee6ed523864dd5f871ffd85e3c2099d579a2.tar.zst nixpkgs-ffedee6ed523864dd5f871ffd85e3c2099d579a2.zip |
Start ssh-agent as a user unit
This has some advantages: * You get ssh-agent regardless of how you logged in. Previously it was only started for X11 sessions. * All sessions of a user share the same agent. So if you added a key on tty1, it will also be available on tty2. * Systemd will restart ssh-agent if it dies. * $SSH_AUTH_SOCK now points to the /run/user/<uid> directory, which is more secure than /tmp. For bonus points, we should patch ssh-agent to support socket-based activation...
Diffstat (limited to 'nixos/modules/config/gnu.nix')
-rw-r--r-- | nixos/modules/config/gnu.nix | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/nixos/modules/config/gnu.nix b/nixos/modules/config/gnu.nix index 092828fed0d..f8c35b440d1 100644 --- a/nixos/modules/config/gnu.nix +++ b/nixos/modules/config/gnu.nix @@ -36,7 +36,7 @@ with lib; # GNU lsh. services.openssh.enable = false; services.lshd.enable = true; - services.xserver.startOpenSSHAgent = false; + programs.ssh.startAgent = false; services.xserver.startGnuPGAgent = true; # TODO: GNU dico. |