fix: remove options causing sudo issues

2026-04-21 00:45:28 -04:00 · 2026-04-21 00:45:28 -04:00 · e14744ff80
commit e14744ff80
parent 96c1b1a504
1 changed files with 2 additions and 2 deletions
--- a/modules/features/security/systemd/security-systemd-sshd.nix
+++ b/modules/features/security/systemd/security-systemd-sshd.nix
@ -6,7 +6,7 @@
        { ... }:
        {
          systemd.services.sshd.serviceConfig = {
-            NoNewPrivileges = true;
+            # NoNewPrivileges = true;
            ProtectSystem = "strict";
            ProtectHome = "read-only";
            ProtectClock = true;
@ -21,7 +21,7 @@
            PrivateDevices = true;
            RestrictNamespaces = true;
            RestrictRealtime = true;
-            RestrictSUIDSGID = true;
+            # RestrictSUIDSGID = true;
            MemoryDenyWriteExecute = true;
            LockPersonality = true;
            DevicePolicy = "closed";