chore: disable sshd · devins.page/flake@462b88e

devins.page / flake

fork atom

configurations for my servers and desktops

nix nixos flake dots dotfiles

fork atom

chore: disable sshd

it seems like tailscale ssh works without it.
keeps enabled for tangled instance, which is then proxied through caddy

devins.page 1 month ago 462b88e4 b00d95ca

+1 -6

4 changed files

expand all

hosts

bluepill-proxy

default.nix

modules

fail2ban.nix

modules

nixos

default.nix

modules

ssh.nix

-1

hosts/bluepill-proxy/default.nix

··· 2 2 imports = [ 3 3 ./hardware.nix 4 4 ./modules/caddy.nix 5 - ./modules/fail2ban.nix 6 5 ]; 7 6 8 7 networking.hostName = "bluepill-proxy";

-3

hosts/bluepill-proxy/modules/fail2ban.nix

··· 1 - {...}: { 2 - services.fail2ban.enable = true; 3 - }

modules/nixos/default.nix

··· 1 1 {lib, ...}: { 2 2 imports = [ 3 3 ./modules/fwupd.nix 4 + # does NOT enable sshd by default, just sets some options for security reasons. tailscale ssh seems to work without sshd 4 5 ./modules/ssh.nix 5 6 ./modules/tailscale.nix 6 7 ];

-2

modules/nixos/modules/ssh.nix

··· 1 1 {...}: { 2 2 services = { 3 3 openssh = { 4 - enable = true; 5 - ports = [ 2222 ]; 6 4 settings = { 7 5 LogLevel = "VERBOSE"; 8 6 PasswordAuthentication = false;