toph/dot.nix
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Set PermitRootLogin as a default value

Browse source
This commit is contained in:
Chris Toph 2025-01-17 01:18:08 -05:00
parent 0a2c3d46e0
commit fb2f410e89
1 changed files with 17 additions and 13 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

28
common/ssh/default.nix
View file

@ -1,17 +1,21 @@
{ {
programs.ssh.startAgent = true; lib,
...
}:
{
programs.ssh.startAgent = true;
users.users.root.openssh.authorizedKeys.keys = [ users.users.root.openssh.authorizedKeys.keys = [
"ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIClZstYoT64zHnGfE7LMYNiQPN5/gmCt382lC+Ji8lrH PVE" "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIClZstYoT64zHnGfE7LMYNiQPN5/gmCt382lC+Ji8lrH PVE"
]; ];
services.openssh = { services.openssh = {
enable = true; enable = true;
settings = { settings = {
AllowUsers = null; # everyone AllowUsers = null; # everyone
PasswordAuthentication = false; PasswordAuthentication = false;
KbdInteractiveAuthentication = false; KbdInteractiveAuthentication = false;
PermitRootLogin = "no"; PermitRootLogin = lib.mkDefault "no";
};
}; };
};
} }