forked from colonelpanic/dotfiles
43 lines
967 B
Nix
43 lines
967 B
Nix
{ config, pkgs, ... }:
|
|
{
|
|
security.pam.sshAgentAuth.enable = true;
|
|
services.avahi = {
|
|
enable = true;
|
|
nssmdns4 = true;
|
|
publish = {
|
|
enable = true;
|
|
domain = true;
|
|
workstation = true;
|
|
userServices = true;
|
|
addresses = true;
|
|
hinfo = true;
|
|
};
|
|
extraServiceFiles = {
|
|
ssh = "''${pkgs.avahi}/etc/avahi/services/ssh.service";
|
|
};
|
|
};
|
|
|
|
services.openssh = {
|
|
enable = true;
|
|
settings = {
|
|
PasswordAuthentication = false;
|
|
X11Forwarding = true;
|
|
};
|
|
};
|
|
|
|
programs.ssh = {
|
|
forwardX11 = false;
|
|
setXAuthLocation = true;
|
|
knownHosts = {
|
|
github = {
|
|
hostNames = ["github.com"];
|
|
publicKey = "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIOMqqnkVzrm0SdG6UOoqKLsabgH5C9okWi0dh2l9GKJl";
|
|
};
|
|
gitlab = {
|
|
hostNames = ["gitlab.com"];
|
|
publicKey = "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIAfuCHKVTjquxvt6CM6tdG4SLp1Btn/nOeHHE5UOzRdf";
|
|
};
|
|
};
|
|
};
|
|
}
|