add add and update ssh keys and ssh-agent
This commit is contained in:
parent
94c5f2a8c9
commit
114ef1ac86
SSH key fingerprint:
SHA256:vy6dKBECV522aPAwklFM3ReKAVB086rT3oWwiuiFG7o
3 changed files with 6 additions and 14 deletions
|
|
@ -15,7 +15,6 @@ in
|
||||||
programs.ssh = {
|
programs.ssh = {
|
||||||
inherit (cfg) matchBlocks;
|
inherit (cfg) matchBlocks;
|
||||||
enable = true;
|
enable = true;
|
||||||
# addKeysToAgent = "yes";
|
|
||||||
};
|
};
|
||||||
};
|
};
|
||||||
}
|
}
|
||||||
|
|
|
||||||
|
|
@ -28,11 +28,7 @@ in
|
||||||
];
|
];
|
||||||
|
|
||||||
openssh.authorizedKeys.keys = [
|
openssh.authorizedKeys.keys = [
|
||||||
"ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIBsUe5YF5z8vGcEYtQX7AAiw2rJygGf2l7xxr8nZZa7w"
|
"ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIIDJtqzSFK3MN12Lo3Y4DnzJV5NiygIPkR+gun5oEb2q jahanson@legiondary"
|
||||||
"ecdsa-sha2-nistp256 AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAABBBH3VVFenoJfnu+IFUlD79uxl7L8SFoRup33J2HGny4WEdRgGR41s0MpFKDBmxXZHy4O9Nh8NMMnpy5VhUefnIKI="
|
|
||||||
"ecdsa-sha2-nistp256 AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAABBBPHFQ3hDjjrKsecn3jmSWYlRXy4IJCrepgU1HaIV5VcmB3mUFmIZ/pCZnPmIG/Gbuqf1PP2FQDmHMX5t0hTYG9A="
|
|
||||||
"ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIETR70eQJiXaJuB+qpI1z+jFOPbEZoQNRcq4VXkojWfU"
|
|
||||||
"ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIATyScd8ZRhV7uZmrQNSAbRTs9N/Dbx+Y8tGEDny30sA"
|
|
||||||
"ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIJyA/yMPPo+scxBaDFUk7WeEyMAMhXUro5vi4feOKsJT jahanson@durincore"
|
"ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIJyA/yMPPo+scxBaDFUk7WeEyMAMhXUro5vi4feOKsJT jahanson@durincore"
|
||||||
];
|
];
|
||||||
};
|
};
|
||||||
|
|
|
||||||
|
|
@ -6,11 +6,7 @@
|
||||||
with config;
|
with config;
|
||||||
{
|
{
|
||||||
mySystem = {
|
mySystem = {
|
||||||
|
|
||||||
de.gnome.enable = true;
|
de.gnome.enable = true;
|
||||||
|
|
||||||
# Lets see if fish everywhere is OK on the pi's
|
|
||||||
# TODO decide if i drop to bash on pis?
|
|
||||||
shell.fish.enable = true;
|
shell.fish.enable = true;
|
||||||
|
|
||||||
system.resticBackup.local.enable = false;
|
system.resticBackup.local.enable = false;
|
||||||
|
|
@ -23,16 +19,16 @@ with config;
|
||||||
};
|
};
|
||||||
|
|
||||||
nix.settings = {
|
nix.settings = {
|
||||||
# TODO factor out into mySystem
|
|
||||||
# Avoid disk full issues
|
# Avoid disk full issues
|
||||||
max-free = lib.mkDefault (1000 * 1000 * 1000);
|
max-free = lib.mkDefault (1000 * 1000 * 1000);
|
||||||
min-free = lib.mkDefault (128 * 1000 * 1000);
|
min-free = lib.mkDefault (128 * 1000 * 1000);
|
||||||
};
|
};
|
||||||
|
|
||||||
# set xserver videodrivers if used
|
|
||||||
services.xserver.enable = true;
|
|
||||||
|
|
||||||
services = {
|
services = {
|
||||||
|
# set xserver videodrivers if used
|
||||||
|
xserver.enable = true;
|
||||||
|
# Enable the Gnome keyring for auto unlocking ssh keys on login
|
||||||
|
gnome.gnome-keyring.enable = true;
|
||||||
fwupd.enable = config.boot.loader.systemd-boot.enable; # fwupd does not work in BIOS mode
|
fwupd.enable = config.boot.loader.systemd-boot.enable; # fwupd does not work in BIOS mode
|
||||||
thermald.enable = true;
|
thermald.enable = true;
|
||||||
smartd.enable = true;
|
smartd.enable = true;
|
||||||
|
|
@ -61,4 +57,5 @@ with config;
|
||||||
};
|
};
|
||||||
|
|
||||||
programs.mtr.enable = true;
|
programs.mtr.enable = true;
|
||||||
|
programs.ssh.startAgent = true;
|
||||||
}
|
}
|
||||||
|
|
|
||||||
Loading…
Reference in a new issue