openssh CVE: deploy the actual fix (now included in the 24.05 channel)

2024-07-02 10:13:16 +02:00 · 2024-07-02 10:13:16 +02:00 · 5ee5879747
commit 5ee5879747
parent fb4007c93a
2 changed files with 6 additions and 7 deletions
--- a/common/configuration.nix
+++ b/common/configuration.nix
@ -9,7 +9,6 @@
  # Enable the OpenSSH daemon
  services.openssh.enable = true;
  services.openssh.settings.PermitRootLogin = lib.mkDefault "no";
-  services.openssh.settings.LoginGraceTime = 0;

  services.fail2ban = {
    enable = true;
--- a/flake.lock
+++ b/flake.lock
@ -42,11 +42,11 @@
    },
    "nixpkgs": {
      "locked": {
-        "lastModified": 1719707984,
-        "narHash": "sha256-RoxIr/fbndtuKqulGvNCcuzC6KdAib85Q8gXnjzA1dw=",
+        "lastModified": 1719838683,
+        "narHash": "sha256-Zw9rQjHz1ilNIimEXFeVa1ERNRBF8DoXDhLAZq5B4pE=",
        "owner": "NixOS",
        "repo": "nixpkgs",
-        "rev": "7dca15289a1c2990efbe4680f0923ce14139b042",
+        "rev": "d032c1a6dfad4eedec7e35e91986becc699d7d69",
        "type": "github"
      },
      "original": {
@ -58,11 +58,11 @@
    },
    "nixpkgs-unstable": {
      "locked": {
-        "lastModified": 1719760900,
-        "narHash": "sha256-NkvFphHXKtQQ8F0XrqGlqkOhjHbE3671F8oLxwtTHhk=",
+        "lastModified": 1719826879,
+        "narHash": "sha256-xs7PlULe8O1SAcs/9e/HOjeUjBrU5FNtkAF/bSEcFto=",
        "owner": "NixOS",
        "repo": "nixpkgs",
-        "rev": "12a9c0004bc987afb1ff511ebb97b67497a68e22",
+        "rev": "b9014df496d5b68bf7c0145d0e9b0f529ce4f2a8",
        "type": "github"
      },
      "original": {