From 414ad162bc5ecdf71e3c5d674c18c6d65bd03a45 Mon Sep 17 00:00:00 2001 From: ene Date: Sat, 18 Mar 2023 17:12:34 +0100 Subject: Fix(system/mail): Declare the password directly As outlined in commit 19f0808, placing a password hash in the world readable nix-store is perfectly safe as long as the hashing function is not reversible, which should be a necessity for a password hash. --- system/mail/default.nix | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/system/mail/default.nix b/system/mail/default.nix index 67531af..2f58c03 100644 --- a/system/mail/default.nix +++ b/system/mail/default.nix @@ -24,7 +24,7 @@ in { loginAccounts = { "sils@vhack.eu" = { - hashedPasswordFile = "/srv/mail/.secrets/silsmailpswd"; + hashedPassword = "$2b$05$RW/Svgk7iGxvP5W7ZwUZ1e.a3fj4fteevb2MtfFYYD0d1DQ17y9Fm"; }; }; -- cgit 1.4.1