DuN0z/nixos-config
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Add: sftp ftpuser config

Browse source
This commit is contained in:
DuN0z 2025-09-26 08:36:37 +02:00
parent ee2ba3ddf6
commit 2a3cd04a31
3 changed files with 21 additions and 2 deletions
Download patch file Download diff file Expand all files Collapse all files

12
modules/services/ftp.nix
View file

@ -8,10 +8,20 @@
home = "/srv/ftp/ftpuser"; home = "/srv/ftp/ftpuser";
createHome = true; createHome = true;
group = "ftpuser"; group = "ftpuser";
shell = "/usr/sbin/nologin"; shell = "/usr/bin/nologin";
}; };
users.groups.ftpuser = {}; users.groups.ftpuser = {};
services.openssh = {
extraConfig = ''
Match User ftpuser
ChrootDirectory /srv/ftp/ftpuser
ForceCommand internal-sftp
AllowTcpForwarding no
X11Forwarding no
'';
};
# ------------------------------------------------- # -------------------------------------------------
# 2⃣ Permissions du répertoire home (méthode A) # 2⃣ Permissions du répertoire home (méthode A)
# ------------------------------------------------- # -------------------------------------------------

8
profiles/server-selfhosted.nix
View file

@ -9,7 +9,13 @@
../modules/sites/levr.porzh.me.nix ../modules/sites/levr.porzh.me.nix
]; ];
services.openssh.enable = true; services.openssh = {
enable = true;
settings = {
PasswordAuthentication = false ;
PubkeyAuthentication = true ;
};
};
environment.systemPackages = with pkgs; [ environment.systemPackages = with pkgs; [
btrfs-progs btrfs-progs

3
secrets/admin-passwd Executable file
View file

@ -0,0 +1,3 @@
basicauth * {
admin $2a$14$RFcSei0IvYK.B7DJ3s6Yn.1i/bjiU.67TrV1RLaL4pxWniHhM8d62
}