nixops: disallow user SSH keys

2024-06-02 14:04:02 +08:00 · 2024-06-02 14:04:02 +08:00 · d91ff8300d
parent bd6c61094f
commit d91ff8300d
2 changed files with 2 additions and 0 deletions
--- a/nixops/desktop.nix
+++ b/nixops/desktop.nix
@ -93,6 +93,7 @@ in
  services.avscan.enable = true;
  services.openssh.enable = true;
  services.openssh.authorizedKeysInHomedir = false;
  services.openssh.settings.PasswordAuthentication = false;
  services.openssh.extraConfig =
    ''
--- a/nixops/rpi.nix
+++ b/nixops/rpi.nix
@ -24,6 +24,7 @@ in
  };
  services.openssh.enable = true;
  services.openssh.authorizedKeysInHomedir = false;
  services.openssh.settings.PasswordAuthentication = false;
  services.openssh.settings.GatewayPorts = "clientspecified";
  services.openssh.extraConfig =