mirror of
https://github.com/gensokyo-zone/infrastructure.git
synced 2026-02-10 04:49:19 -08:00
33 lines
740 B
Nix
33 lines
740 B
Nix
{ config, lib, pkgs, ... }:
|
|
|
|
with lib;
|
|
|
|
{
|
|
networks = genAttrs [ "chitei" "gensokyo" ] (_: {
|
|
# Mosh
|
|
tcp = [62954];
|
|
udp = [ [60000 61000] ];
|
|
});
|
|
|
|
/*
|
|
security.pam.services.sshd.text = mkDefault (mkAfter ''
|
|
session required pam_exec.so ${katnotify}/bin/notify
|
|
'');
|
|
*/
|
|
|
|
services.openssh = {
|
|
enable = true;
|
|
ports = lib.mkDefault [ 62954 ];
|
|
settings = {
|
|
PasswordAuthentication = false;
|
|
KbdInteractiveAuthentication = false;
|
|
PermitRootLogin = lib.mkDefault "prohibit-password";
|
|
KexAlgorithms = [ "curve25519-sha256@libssh.org" ];
|
|
PubkeyAcceptedAlgorithms = "+ssh-rsa";
|
|
StreamLocalBindUnlink = "yes";
|
|
LogLevel = "VERBOSE";
|
|
};
|
|
};
|
|
|
|
programs.mosh.enable = true;
|
|
}
|