1
0
Files
configuration
common
backup.nix
default.nix
initrd.nix
locale.nix
networking.nix
nix.nix
programs.nix
ssh.nix
systemd.nix
user.nix
web.nix
desktop
dn42
gpg-ssh
hetzner-cloud
hydra-build-machine
proxmox-vm
router
flake
hosts
lib
modules
pkgs
users
.gitignore
README.md
flake.lock
flake.nix
nixfiles/configuration/common/ssh.nix

17 lines
363 B
Nix

{ lib, ... }:
{
services.openssh.enable = true;
services.openssh.settings = {
PasswordAuthentication = false;
KbdInteractiveAuthentication = false;
PermitRootLogin = lib.mkDefault "no";
};
services.openssh.hostKeys = lib.mkForce [
# Only create ed25519 host keys
{ type = "ed25519"; path = "/etc/ssh/ssh_host_ed25519_key"; }
];
}