From 8c81af4f7f8cd51391a2fa2a7d52eed630643e4b Mon Sep 17 00:00:00 2001
From: clerie <git@clerie.de>
Date: Fri, 22 Sep 2023 17:06:14 +0200
Subject: [PATCH] configuration/common: use ed25519 host keys for ssh only from
 now

---
 configuration/common/default.nix | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/configuration/common/default.nix b/configuration/common/default.nix
index 21d8fd3..a56a8b9 100644
--- a/configuration/common/default.nix
+++ b/configuration/common/default.nix
@@ -61,6 +61,10 @@
     KbdInteractiveAuthentication = false;
     PermitRootLogin = lib.mkDefault "no";
   };
+  services.openssh.hostKeys = lib.mkForce [
+    # Only create ed25519 host keys
+    { type = "ed25519"; path = "/etc/ssh/ssh_host_ed25519_key"; }
+  ];
 
   nix.gc = lib.mkDefault {
     automatic = true;