dotfiles/nixos/ssh.nix

45 lines
1.0 KiB
Nix
Raw Permalink Normal View History

{ config, pkgs, ... }:
{
2024-06-02 21:58:13 -06:00
security.pam.sshAgentAuth.enable = true;
services.avahi = {
enable = true;
2023-12-21 16:04:06 -07:00
nssmdns4 = true;
publish = {
enable = true;
domain = true;
workstation = true;
userServices = true;
addresses = true;
hinfo = true;
};
extraServiceFiles = {
ssh = "''${pkgs.avahi}/etc/avahi/services/ssh.service";
};
};
2023-08-07 13:33:41 -06:00
services.openssh = {
enable = true;
settings = {
2024-06-02 22:08:10 -06:00
AllowAgentForwarding = true;
AllowTcpForwarding = true;
PasswordAuthentication = false;
2023-09-10 17:13:13 -06:00
X11Forwarding = true;
};
2023-08-07 13:33:41 -06:00
};
programs.ssh = {
2024-06-02 21:58:13 -06:00
forwardX11 = false;
2023-09-10 17:13:13 -06:00
setXAuthLocation = true;
knownHosts = {
github = {
hostNames = ["github.com"];
publicKey = "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIOMqqnkVzrm0SdG6UOoqKLsabgH5C9okWi0dh2l9GKJl";
};
gitlab = {
hostNames = ["gitlab.com"];
publicKey = "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIAfuCHKVTjquxvt6CM6tdG4SLp1Btn/nOeHHE5UOzRdf";
};
};
};
}