1 files changed, 2 insertions, 2 deletions
diff --git a/nixops/modules/ssh/default.nix b/nixops/modules/ssh/default.nix
index ece4b9f..81b7751 100644
--- a/nixops/modules/ssh/default.nix
+++ b/nixops/modules/ssh/default.nix
@@ -11,12 +11,12 @@
    mySecrets.keys = [{
      dest = "ssh-ldap";
      user = "nobody";
-      group = "nobody";
+      group = "nogroup";
      permissions = "0400";
      text = myconfig.env.sshd.ldap.password;
    }];
    system.activationScripts.sshd = ''
-      install -Dm400 -o nobody -g nobody -T /var/secrets/ssh-ldap /etc/ssh/ldap_password
+      install -Dm400 -o nobody -g nogroup -T /var/secrets/ssh-ldap /etc/ssh/ldap_password
      '';
    # ssh is strict about parent directory having correct rights, don't
    # move it in the nix store.

diff --git a/nixops/modules/ssh/default.nix b/nixops/modules/ssh/default.nix index ece4b9f..81b7751 100644 --- a/nixops/modules/ssh/default.nix +++ b/nixops/modules/ssh/default.nix
@@ -11,12 +11,12 @@
11	mySecrets.keys = [{	11	mySecrets.keys = [{
12	dest = "ssh-ldap";	12	dest = "ssh-ldap";
13	user = "nobody";	13	user = "nobody";
14	group = "nobody";	14	group = "nogroup";
15	permissions = "0400";	15	permissions = "0400";
16	text = myconfig.env.sshd.ldap.password;	16	text = myconfig.env.sshd.ldap.password;
17	}];	17	}];
18	system.activationScripts.sshd = ''	18	system.activationScripts.sshd = ''
19	install -Dm400 -o nobody -g nobody -T /var/secrets/ssh-ldap /etc/ssh/ldap_password	19	install -Dm400 -o nobody -g nogroup -T /var/secrets/ssh-ldap /etc/ssh/ldap_password
20	'';	20	'';
21	# ssh is strict about parent directory having correct rights, don't	21	# ssh is strict about parent directory having correct rights, don't
22	# move it in the nix store.	22	# move it in the nix store.