From 8b3268016023cf3d247be11df11ceac63e27700f Mon Sep 17 00:00:00 2001 From: Xe Date: Tue, 3 Jan 2023 20:18:29 -0500 Subject: [PATCH] common: add module to disable RSA ssh hostkeys Signed-off-by: Xe --- common/default.nix | 2 +- common/no-rsa-ssh-hostkey.nix | 6 ++++++ hosts/.DS_Store | Bin 6148 -> 0 bytes 3 files changed, 7 insertions(+), 1 deletion(-) create mode 100644 common/no-rsa-ssh-hostkey.nix delete mode 100644 hosts/.DS_Store diff --git a/common/default.nix b/common/default.nix index cf7de65..5b25146 100644 --- a/common/default.nix +++ b/common/default.nix @@ -1,5 +1,5 @@ { config, lib, pkgs, ... }: { - imports = [ ./users ./microcode.nix ]; + imports = [ ./users ./microcode.nix ./no-rsa-ssh-hostkey.nix ]; boot.cleanTmpDir = true; boot.kernelModules = [ "wireguard" ]; diff --git a/common/no-rsa-ssh-hostkey.nix b/common/no-rsa-ssh-hostkey.nix new file mode 100644 index 0000000..d0a4c92 --- /dev/null +++ b/common/no-rsa-ssh-hostkey.nix @@ -0,0 +1,6 @@ +{ + services.openssh.hostKeys = [{ + path = "/etc/ssh/ssh_host_ed25519_key"; + type = "ed25519"; + }]; +} diff --git a/hosts/.DS_Store b/hosts/.DS_Store deleted file mode 100644 index a086f1e06eed036688c074ee760683e60314af0b..0000000000000000000000000000000000000000 GIT binary patch literal 0 HcmV?d00001 literal 6148 zcmeHK%Z}496us`GZORC#3y_!vQY5wmbN~Srn@kxNYzcw|pps0>Of+d+CGB)jRVjP; z27ZAxKf=GTf^%&nrj814-Ws2)HrVD095|IT@`QDHQo+4RGsY^r#SzQwHl&xB zss@vIA$%$=gf=)S{za3?3!u#G&>YMu{_Tvy>hskSD090i;svIE4v&i(o3$&mTXasd z8i&VU=AdeAy8>nzy1Uycw#O=975GmT;QhfvV)P9b8r9Z;OkDwh4w{vrtUmpL9yb7e zgM~)4z=U=MYFA;d7{c5fgmy>2Z}^2q?M^~H8F9>$g}I>!bMX+KqLc77+T1E&6{sq( zqpN*B|DSBX|5u%C%_?9O_@@*Q&QWkQ!jR0_+87+4wI0%2BsS(18kGw&a~!JzAH~;@ bl%db#0?;>DXhaLleh4TTY-SbsqYC^0V;