diff options
| author | Jörg Thalheim <joerg@thalheim.io> | 2020-02-28 15:06:49 +0000 |
|---|---|---|
| committer | Jörg Thalheim <joerg@thalheim.io> | 2020-02-28 15:32:36 +0000 |
| commit | 9218a58964c6a68f895d81d43573ff1e44a4484f (patch) | |
| tree | 35d2426b01225fbcc2318ad23e19d8ffd9920638 /nixos/modules/services/networking/sslh.nix | |
| parent | 250daba4bec759451feaaa5eba778bb53e9c389e (diff) | |
| download | nixpkgs-9218a58964c6a68f895d81d43573ff1e44a4484f.tar nixpkgs-9218a58964c6a68f895d81d43573ff1e44a4484f.tar.gz nixpkgs-9218a58964c6a68f895d81d43573ff1e44a4484f.tar.bz2 nixpkgs-9218a58964c6a68f895d81d43573ff1e44a4484f.tar.lz nixpkgs-9218a58964c6a68f895d81d43573ff1e44a4484f.tar.xz nixpkgs-9218a58964c6a68f895d81d43573ff1e44a4484f.tar.zst nixpkgs-9218a58964c6a68f895d81d43573ff1e44a4484f.zip | |
nixos/sslh: don't run as nogroup
See #55370
Diffstat (limited to 'nixos/modules/services/networking/sslh.nix')
| -rw-r--r-- | nixos/modules/services/networking/sslh.nix | 9 |
1 files changed, 2 insertions, 7 deletions
diff --git a/nixos/modules/services/networking/sslh.nix b/nixos/modules/services/networking/sslh.nix index 0222e8ce8b5..c4fa370a5fe 100644 --- a/nixos/modules/services/networking/sslh.nix +++ b/nixos/modules/services/networking/sslh.nix @@ -77,19 +77,14 @@ in config = mkMerge [ (mkIf cfg.enable { - users.users.${user} = { - description = "sslh daemon user"; - isSystemUser = true; - }; - systemd.services.sslh = { description = "Applicative Protocol Multiplexer (e.g. share SSH and HTTPS on the same port)"; after = [ "network.target" ]; wantedBy = [ "multi-user.target" ]; serviceConfig = { - User = user; - Group = "nogroup"; + DynamicUser = true; + User = "sslh"; PermissionsStartOnly = true; Restart = "always"; RestartSec = "1s"; |