Dotfiles

History

Amir Alexander Abdelbaki 6ad8d0d488 feat(ansipa): add no_local_users device policy to lock all local account passwords Adds a new host group policy `no_local_users` that locks the passwords of root and all local users (UID >= 1000) via `passwd -l`, ensuring only FreeIPA domain accounts with centrally-managed sudo rules can authenticate and gain elevated privileges. Leaving the group reverts by unlocking every account tracked in the state file. Updates docs with group reference entry and Local User Lockdown section. Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>	2026-05-20 16:18:48 +02:00
..
md	feat(ansipa): add no_local_users device policy to lock all local account passwords	2026-05-20 16:18:48 +02:00
md-to-html.sh	docs: add full documentation site with CyberQueer HTML theme	2026-05-18 15:47:09 +02:00

Amir Alexander Abdelbaki 6ad8d0d488 feat(ansipa): add no_local_users device policy to lock all local account passwords

Adds a new host group policy `no_local_users` that locks the passwords of root
and all local users (UID >= 1000) via `passwd -l`, ensuring only FreeIPA domain
accounts with centrally-managed sudo rules can authenticate and gain elevated
privileges. Leaving the group reverts by unlocking every account tracked in the
state file. Updates docs with group reference entry and Local User Lockdown section.

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>

2026-05-20 16:18:48 +02:00

feat(ansipa): add no_local_users device policy to lock all local account passwords

2026-05-20 16:18:48 +02:00

md-to-html.sh

docs: add full documentation site with CyberQueer HTML theme

2026-05-18 15:47:09 +02:00