rilla
/
nix-config
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

updated ssh hosts

feat/kile-v2
Ricard Illa 2022-10-21 23:35:06 +02:00
parent b11ea76d46
commit 1af3db5216
No known key found for this signature in database
GPG Key ID: F69A672B72E54902
2 changed files with 20 additions and 54 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

72
home/ssh/default.nix
View File

@ -1,69 +1,35 @@
{ config, pkgs, ... }: { config, pkgs, ... }:
{ let
defaultBlock = {
identitiesOnly = true;
identityFile = "~/.ssh/id_rsa_yubikey.pub";
certificateFile = "~/.ssh/id_rsa_yubikey-cert.pub";
forwardAgent = true;
port = 22;
};
in {
home.file.".ssh/id_rsa_yubikey.pub".source = ./id_rsa_yubikey.pub; home.file.".ssh/id_rsa_yubikey.pub".source = ./id_rsa_yubikey.pub;
home.file.".ssh/id_rsa_yubikey-cert.pub".source = ./id_rsa_yubikey-cert.pub; home.file.".ssh/id_rsa_yubikey-cert.pub".source = ./id_rsa_yubikey-cert.pub;
programs.ssh = { programs.ssh = {
enable = true; enable = true;
matchBlocks = { matchBlocks = {
"github.com" = { "github.com" = defaultBlock;
identitiesOnly = true;
identityFile = "~/.ssh/id_rsa_yubikey.pub";
};
"openwrt" = { "openwrt" = defaultBlock // { user = "root"; };
identitiesOnly = true;
identityFile = "~/.ssh/id_rsa_yubikey.pub";
forwardAgent = true;
user = "root";
};
"narwhal" = { "suricata" = defaultBlock;
identitiesOnly = true; "pikvm" = defaultBlock;
identityFile = "~/.ssh/id_rsa_yubikey.pub"; "narwhal" = defaultBlock;
certificateFile = "~/.ssh/id_rsa_yubikey-cert.pub"; "trantor" = defaultBlock;
forwardAgent = true; "axolotl" = defaultBlock;
port = 22; "caladan" = defaultBlock;
}; "fugu" = defaultBlock;
"trantor" = { "bitbucket.org" = defaultBlock // {
identitiesOnly = true;
identityFile = "~/.ssh/id_rsa_yubikey.pub";
certificateFile = "~/.ssh/id_rsa_yubikey-cert.pub";
forwardAgent = true;
port = 22;
};
"axolotl" = {
identitiesOnly = true;
identityFile = "~/.ssh/id_rsa_yubikey.pub";
certificateFile = "~/.ssh/id_rsa_yubikey-cert.pub";
forwardAgent = true;
port = 22;
};
"caladan" = {
identitiesOnly = true;
identityFile = "~/.ssh/id_rsa_yubikey.pub";
certificateFile = "~/.ssh/id_rsa_yubikey-cert.pub";
forwardAgent = true;
port = 22;
};
"fugu" = {
identitiesOnly = true;
identityFile = "~/.ssh/id_rsa_yubikey.pub";
certificateFile = "~/.ssh/id_rsa_yubikey-cert.pub";
forwardAgent = true;
port = 22;
};
"bitbucket.org" = {
user = "git"; user = "git";
identitiesOnly = true;
identityFile = "~/.ssh/bitbucket_rsa"; identityFile = "~/.ssh/bitbucket_rsa";
port = 22;
}; };
}; };

2
nixos/common.nix
View File

@ -221,7 +221,7 @@
}]; }];
knownHosts = { knownHosts = {
"*.monotremata.xyz,10.*,narwhal,suricata,caladan,fugu,snitch,trantor,capibara,axolotl,echidna" = "*.monotremata.xyz,10.*,narwhal,suricata,pikvm,caladan,fugu,snitch,trantor,capibara,axolotl,echidna" =
{ {
certAuthority = true; certAuthority = true;
publicKey = publicKey =