nixos-config/services/openssh.nix

21 lines
990 B
Nix
Raw Permalink Normal View History

2024-11-09 14:02:26 +00:00
{ ... }:
{
2024-10-31 08:24:05 +00:00
services.openssh.enable = true;
2024-10-30 08:06:52 +00:00
services.openssh.settings = {
2024-10-31 08:28:33 +00:00
PermitRootLogin = "yes";
2024-10-31 08:28:16 +00:00
PasswordAuthentication = false;
2024-11-21 08:49:24 +00:00
StreamLocalBindUnlink = "yes";
GatewayPorts = "clientspecified";
AcceptEnv = "WAYLAND_DISPLAY";
X11Forwarding = true;
2024-10-30 08:06:52 +00:00
};
2024-11-08 07:48:56 +00:00
programs.ssh.knownHosts = {
"git.chir.rs".publicKey = "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIE+GanuiV1I08OP8+nNy24+zagQN08rtJnCoU/ixiQNn";
2024-11-08 07:48:56 +00:00
"instance-20221213-1915.int.chir.rs".publicKey = "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIE+GanuiV1I08OP8+nNy24+zagQN08rtJnCoU/ixiQNn";
"nas.int.chir.rs".publicKey = "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIDhao1I1Kd1gK5bERUdjMxP9yHDrSHYZsTN2TcSk0K/U";
2024-11-08 07:48:56 +00:00
"not522.tailbab65.ts.net".publicKey = "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAILpOcmvVODaja3wDdnocb/k6MK7vsh5uH8gpeHR9+/rY";
"rainbow-resort.int.chir.rs".publicKey = "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAII9MczPuvEh9XaT6e3emfC+WyMYEpyRu2jDUkt3bBk8W";
2024-11-08 07:48:56 +00:00
};
2024-11-09 14:02:26 +00:00
networking.firewall.allowedTCPPorts = [ 22 ];
2024-10-30 08:06:52 +00:00
}