Home Explore Help
Sign In
badbayan
/
nix-config
Watch 1
Star 0
Fork 0
Files
Branch: master
Branches Tags
nix-config
/
nixos
/
common
/
faillock.nix

faillock.nix 721 B
Permalink History Raw

12345678910111213141516171819202122232425262728 
  1. { config, lib, ... }:
    2. 

  2. with lib;
    3. 

  3. {
    4. 

  4.   security.pam.services.login = {
    5. 

  5.     failDelay.enable = true;
    6. 

  6.     logFailures = true;
    7. 

  7.     rules = with config.security.pam.services.login.rules; {
    8. 

  8.       account.faillock = {
    9. 

  9.         inherit (auth.faillock) enable;
    10. 

  10.         args = [];
    11. 

  11.         inherit (auth.faillock) control;
    12. 

  12.         inherit (auth.faillock) modulePath;
    13. 

  13.         order = account.unix.order - 50;
    14. 

  14.       };
    15. 

  15.       auth = {
    16. 

  16.         faillock.args = [ "preauth" ];
    17. 

  17.         faillock-fail = {
    18. 

  18.           inherit (auth.faillock) enable;
    19. 

  19.           args = [ "authfail" ];
    20. 

  20.           inherit (auth.faillock) control;
    21. 

  21.           inherit (auth.faillock) modulePath;
    22. 

  22.           order = auth.unix.order + 50;
    23. 

  23.         };
    24. 

  24.       };
    25. 

  25.     };
    26. 

  26.   };
    27. 

  27. }
    28. 

  28.