diff options
| author | andromeda <andromeda@lenovo> | 2026-01-12 14:26:35 +0100 |
|---|---|---|
| committer | andromeda <andromeda@lenovo> | 2026-01-12 14:26:35 +0100 |
| commit | 803bc95317806841ef8f9a4a57be04eea671e7ad (patch) | |
| tree | 32a0bd81ed81f50a18719619afe1c7217bc74b1f /modules | |
| parent | 4bd6ddece1481557349f7d8eecc017ae4fd4ea85 (diff) | |
fix dkim perms?
Diffstat (limited to 'modules')
| -rw-r--r-- | modules/nixos/mailserver.nix | 8 |
1 files changed, 6 insertions, 2 deletions
diff --git a/modules/nixos/mailserver.nix b/modules/nixos/mailserver.nix index 767b13f..ada51f4 100644 --- a/modules/nixos/mailserver.nix +++ b/modules/nixos/mailserver.nix @@ -22,8 +22,12 @@ # put dkim key into /etc for declarability mailserver.dkimKeyDirectory = "/etc/dkim"; - environment.etc."dkim/${config.networking.domain}.${config.mailserver.dkimSelector}.key".source = - config.age.secrets."dkim-${config.networking.domain}.${config.mailserver.dkimSelector}.key".path; + environment.etc."dkim/${config.networking.domain}.${config.mailserver.dkimSelector}.key" = { + source = config.age.secrets."dkim-${config.networking.domain}.${config.mailserver.dkimSelector}.key".path; + mode = "600"; + user = config.services.rspamd.user; + group = config.services.rspamd.group; + }; # does acme for me services.nginx = { |