From 180bcfa3ff70609c0afcf273ba4ee27eb3658676 Mon Sep 17 00:00:00 2001
From: Infinidoge <infinidoge@inx.moe>
Date: Sun, 28 Apr 2024 19:12:49 -0400
Subject: [PATCH] global/security: replace ssh agent auth with passwordless
 sudo

---
 modules/global/security.nix | 6 +-----
 1 file changed, 1 insertion(+), 5 deletions(-)

diff --git a/modules/global/security.nix b/modules/global/security.nix
index 76d4e07..3ab9f4c 100644
--- a/modules/global/security.nix
+++ b/modules/global/security.nix
@@ -3,6 +3,7 @@ with lib;
 {
   # Security settings based on https://github.com/hlissner/dotfiles/blob/master/modules/security.nix
   security = {
+    sudo.wheelNeedsPassword = false;
     sudo.extraConfig = ''
       Defaults lecture=never
     '';
@@ -14,11 +15,6 @@ with lib;
         environmentFile = config.secrets.cloudflare;
       };
     };
-
-    pam.sshAgentAuth = {
-      enable = true;
-      authorizedKeysFiles = lib.mkForce [ "/etc/ssh/authorized_keys.d/%u" ];
-    };
   };
 
   hardware = {