devos/profiles/ssh/default.nix
2021-07-07 20:32:40 +02:00

21 lines
565 B
Nix

{ ... }: {
services.openssh = {
enable = true;
forwardX11 = true;
permitRootLogin = "no";
startWhenNeeded = true;
openFirewall = true;
passwordAuthentication = false;
};
nix.sshServe.enable = true;
nix.sshServe.keys = [
"ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAID29iFz1dBQmbCbVkclFEn4I9dY2uf3u7bbKs2obEIl/ mae@teapot"
"ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIKGYGAlEHbg4fqLk+KgpqVtCCbUnUq1Z/IF0xPPJqJT8 justabanana@tesco"
];
nix.binaryCaches = [
"ssh://nix-ssh@192.168.0.18"
];
nix.allowedUsers = [
"nix-ssh"
];
}