From 4d334ca60dde616d595ffb383d6051479d513d72 Mon Sep 17 00:00:00 2001
From: Jean-Paul Calderone <exarkun@twistedmatrix.com>
Date: Wed, 10 Jun 2020 15:38:42 -0400
Subject: [PATCH] just a note

---
 nixos/modules/ssh.nix | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/nixos/modules/ssh.nix b/nixos/modules/ssh.nix
index 93c1be87..59ee2fec 100644
--- a/nixos/modules/ssh.nix
+++ b/nixos/modules/ssh.nix
@@ -38,7 +38,9 @@
         PermitEmptyPasswords no
 
         # Only allow authentication as one of the configured users, not random
-        # other (often system-managed) users.
+        # other (often system-managed) users.  Possibly this is also
+        # superfluous!  NixOS system users have nologin as their shell ... so they
+        # cannot log in anyway.
         AllowUsers ${builtins.concatStringsSep " " (builtins.attrNames cfg.sshUsers)}
       '';
     };
-- 
GitLab