From 3727e7bd79fe75ff18b1dc6af494dbda940e0971 Mon Sep 17 00:00:00 2001
From: Benjamin Chausse <benjamin@chausse.xyz>
Date: Thu, 14 Nov 2024 12:05:09 -0500
Subject: Batman

---
 common/ssh.nix | 16 ++++++++++++++++
 1 file changed, 16 insertions(+)
 create mode 100644 common/ssh.nix

(limited to 'common/ssh.nix')

diff --git a/common/ssh.nix b/common/ssh.nix
new file mode 100644
index 0000000..de931f5
--- /dev/null
+++ b/common/ssh.nix
@@ -0,0 +1,16 @@
+{services, networking, ...}:
+
+{
+  services.openssh = {
+    enable = true;
+    ports = [ 22 ];
+    settings = {
+      PasswordAuthentication = true;
+      AllowUsers = null; # Allows all users by default. Can be [ "user1" "user2" ]
+      UseDns = true;
+      X11Forwarding = false;
+      PermitRootLogin = "no"; # "yes", "without-password", "prohibit-password", "forced-commands-only", "no"
+    };
+  };
+  # networking.firewall.allowedTCPPorts = [22];
+}
-- 
cgit v1.2.3