From f7d156b88cccb8c164ecb9a5fafe20490cfa416a Mon Sep 17 00:00:00 2001
From: kat witch <kat@kittywit.ch>
Date: Thu, 11 Nov 2021 19:49:22 +0000
Subject: [PATCH] SSH: fix for terraform, comment for experiment

---
 config/profiles/base/ssh.nix | 7 +++++++
 1 file changed, 7 insertions(+)

diff --git a/config/profiles/base/ssh.nix b/config/profiles/base/ssh.nix
index 0783e577..d1ff411e 100644
--- a/config/profiles/base/ssh.nix
+++ b/config/profiles/base/ssh.nix
@@ -20,6 +20,12 @@ with lib;
     };
   };
 
+/*
+  security.pam.services.sshd.text = mkDefault (mkAfter ''
+    session required pam_exec.so ${katnotify}/bin/notify
+  '');
+*/
+
   services.openssh = {
     enable = true;
     ports = lib.mkDefault [ 62954 ];
@@ -28,6 +34,7 @@ with lib;
     permitRootLogin = lib.mkDefault "prohibit-password";
     kexAlgorithms = [ "curve25519-sha256@libssh.org" ];
     extraConfig = ''
+      PubkeyAcceptedAlgorithms +ssh-rsa
       StreamLocalBindUnlink yes
       LogLevel VERBOSE
     '';