From fac59cb6ceafa84b9e4c5914f609f928634c6e01 Mon Sep 17 00:00:00 2001 From: Nathan Date: Thu, 23 Apr 2026 09:48:55 -0500 Subject: [PATCH] restructure homebox --- modules/features/openssh.nix | 1 - modules/hosts/homebox/configuration.nix | 5 +++++ modules/users/nathan/nathan.nix | 2 +- 3 files changed, 6 insertions(+), 2 deletions(-) diff --git a/modules/features/openssh.nix b/modules/features/openssh.nix index bb664b4..f39e266 100644 --- a/modules/features/openssh.nix +++ b/modules/features/openssh.nix @@ -8,7 +8,6 @@ enable = true; openFirewall = lib.mkDefault true; settings = { - PermitRootLogin = lib.mkForce "no"; PasswordAuthentication = false; KbdInteractiveAuthentication = false; }; diff --git a/modules/hosts/homebox/configuration.nix b/modules/hosts/homebox/configuration.nix index 4bac3bc..ad44355 100644 --- a/modules/hosts/homebox/configuration.nix +++ b/modules/hosts/homebox/configuration.nix @@ -48,6 +48,11 @@ systemd.settings.Manager.DefaultLimitNOFILE = 2048; + users.users.root.openssh.authorizedKeys.keys = [ + "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIAsU69CxfQk58CvItPN426h5Alnpb60SH37wet97Vb57 nathan@laptop" + "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIEnUhN2uHwAJF/SLRX3wlGRmfhV3zpP88JQAYB+gh8jW nathan@localhost" + ]; + programs.zsh.enable = true; environment.shells = with pkgs; [ zsh bashInteractive ]; diff --git a/modules/users/nathan/nathan.nix b/modules/users/nathan/nathan.nix index 3418a47..66ee9bb 100644 --- a/modules/users/nathan/nathan.nix +++ b/modules/users/nathan/nathan.nix @@ -16,7 +16,7 @@ name = lib.mkDefault "nathan"; isNormalUser = lib.mkDefault true; #hashedPasswordFile = lib.mkIf (cfg.hashedPasswordFile != null) cfg.hashedPasswordFile; - extraGroups = [ "networkmanager" "docker" "libvirtd" ]; + extraGroups = [ "networkmanager" "docker" "libvirtd" "wheel" ]; openssh.authorizedKeys.keys = lib.mkMerge [ (useWith homebox [ "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIAsU69CxfQk58CvItPN426h5Alnpb60SH37wet97Vb57 nathan@laptop"