12 lines
341 B
Nix
12 lines
341 B
Nix
{ config, username, ... }:
|
|
|
|
{
|
|
services.openssh = {
|
|
enable = true;
|
|
settings.permitRootLogin = "no";
|
|
settings.passwordAuthentication = false;
|
|
};
|
|
programs.ssh.hostKeyAlgorithms = [ "sk-ssh-ed25519@openssh.com" "ssh-ed25519" ];
|
|
users.users.${username}.openssh.authorizedKeys.keyFiles = [ ../maddie/ssh/id_ed25519_sk.pub ];
|
|
}
|