diff options
| author | Alex Auvolat <alex@adnab.me> | 2023-10-23 22:08:00 +0200 |
|---|---|---|
| committer | Alex Auvolat <alex@adnab.me> | 2023-10-23 22:08:00 +0200 |
| commit | f5ee7edf7d3d88b4f93d5f0e330e260f1d232c31 (patch) | |
| tree | a1d7481774e226efd9f0795099ff500f2ba7dae5 /nixos | |
| parent | 7630d5877f893414524e33479b1c49bacce3c499 (diff) | |
| download | user-config-f5ee7edf7d3d88b4f93d5f0e330e260f1d232c31.tar.gz user-config-f5ee7edf7d3d88b4f93d5f0e330e260f1d232c31.zip | |
add openssh access
Diffstat (limited to 'nixos')
| -rw-r--r-- | nixos/common.nix | 19 |
1 files changed, 19 insertions, 0 deletions
diff --git a/nixos/common.nix b/nixos/common.nix index 6868efa..7154465 100644 --- a/nixos/common.nix +++ b/nixos/common.nix @@ -59,8 +59,13 @@ in }; services.resolved.enable = false; + networking.extraHosts = '' + 201:8c16:538b:891c:96cb:c8f6:40dd:125d lindy + ''; + # Open ports in the firewall. networking.firewall.allowedTCPPorts = [ + 2022 # openssh 22000 # syncthing ]; networking.firewall.allowedUDPPorts = [ @@ -118,6 +123,20 @@ in "dialout" "kvm" ]; + openssh.authorizedKeys.keys = [ + "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIJpaBZdYxHqMxhv2RExAOa7nkKhPBOHupMP3mYaZ73w9" + ]; + }; + + # -------------------- yea openssh --------------------- + + services.openssh = { + enable = true; + ports = [ 2022 ]; + settings = { + PermitRootLogin = "no"; + PasswordAuthentication = false; + }; }; # -------------------- packages --------------------- |