nixosModules/ssh.nix at fb3e3f41dc30bdf4cf51d096b63afe927d419ca5

bwc9876.dev / nixos-config

fork atom

Flake for my NixOS devices

fork atom

nixos-config / nixosModules / ssh.nix

at fb3e3f41dc30bdf4cf51d096b63afe927d419ca5 34 lines 744 B view raw

wrap content

bwc9876.dev Switch to Wezterm 1y ago

223bb2aa

 1{
 2  lib,
 3  config,
 4  ...
 5}: let
 6  beanPubkey = "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIKb2qxNUbvdBTAntmUyPIaOXwFd1nhZO/SS00SNss0nU";
 7in {
 8  users.users."bean".openssh.authorizedKeys.keys = [
 9    beanPubkey
10  ];
11
12  environment.enableAllTerminfo = true;
13
14  services.openssh = {
15    enable = true;
16    openFirewall = true;
17    banner = ''
18      -=≡ ${lib.toUpper config.networking.hostName} ≡=-
19
20    '';
21    listenAddresses = [
22      {
23        addr = "0.0.0.0";
24      }
25    ];
26    ports = [8069];
27    settings.GSSAPIAuthentication = false;
28    settings.PasswordAuthentication = false;
29    settings.UseDns = false;
30    # settings.LogLevel = "DEBUG1";
31    settings.PermitRootLogin = "no";
32    settings.KbdInteractiveAuthentication = false;
33  };
34}