dannydannydanny/dotfiles
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

security: remove initialPassword from phantom-ship config 🔒

Browse source 
Password is locked in shadow and SSH is key-only, so the
initialPassword served no purpose and was a minor security concern.
This commit is contained in:
DannyDannyDanny 2026-04-04 11:26:54 +02:00
parent 4d6b64dee9
commit 4544635ad6
1 changed files with 1 additions and 1 deletions
Download patch file Download diff file Expand all files Collapse all files

2
nixos/hosts/phantom-ship.nix
View file

@ -64,7 +64,7 @@ in
users.users.danny = { users.users.danny = {
isNormalUser = true; isNormalUser = true;
extraGroups = [ "wheel" ]; extraGroups = [ "wheel" ];
initialPassword = "changeme"; # console fallback; change after first login # Password is locked (key-only SSH). Use NixOS installer or recovery to reset if needed.
}; };
# Key-only auth; no password or keyboard-interactive. # Key-only auth; no password or keyboard-interactive.