zzstoatzz.io / zzknotzz
this repo has no description
fork atom

fix ssh: use port 2222, configure AuthorizedKeysCommand

fly.io intercepts port 22, so sshd runs on 2222.
added proper sshd config with knot keys integration.

🤖 Generated with [Claude Code](https://claude.com/claude-code)

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>

zzstoatzz.io 632ad880 4f31fb8d

+18 -3
unified split
+2 -2
fly.toml
··· 19 19 20 20 [[services]] 21 21 protocol = 'tcp' 22 - internal_port = 22 22 + internal_port = 2222 23 23 24 24 [[services.ports]] 25 - port = 22 25 + port = 2222 26 26 27 27 [[vm]] 28 28 memory = '512mb'
+16 -1
start.sh
··· 15 15 # ensure git user owns home directory 16 16 chown -R git:git /home/git 17 17 18 - # start sshd in background 18 + # configure sshd for knot 19 + cat > /etc/ssh/sshd_config << 'EOF' 20 + Port 2222 21 + HostKey /etc/ssh/keys/ssh_host_ed25519_key 22 + HostKey /etc/ssh/keys/ssh_host_rsa_key 23 + HostKey /etc/ssh/keys/ssh_host_ecdsa_key 24 + PasswordAuthentication no 25 + PubkeyAuthentication yes 26 + AuthorizedKeysFile none 27 + 28 + Match User git 29 + AuthorizedKeysCommand /usr/bin/knot keys -o authorized-keys -internal-api http://localhost:5444 -git-dir /home/git/repositories 30 + AuthorizedKeysCommandUser nobody 31 + EOF 32 + 33 + # start sshd (port configured in sshd_config) 19 34 /usr/sbin/sshd -D -e & 20 35 21 36 # run knotserver as git user (foreground)