85 lines
1.6 KiB
Nix
85 lines
1.6 KiB
Nix
{ config, ... }:
|
|
|
|
let
|
|
signers-directory = "${config.home.homeDirectory}/.ssh/allowed_signers";
|
|
in
|
|
{
|
|
programs.ssh = {
|
|
enable = true;
|
|
|
|
forwardAgent = false;
|
|
compression = false;
|
|
hashKnownHosts = true;
|
|
serverAliveInterval = 60;
|
|
extraConfig = ''
|
|
IgnoreUnknown UseKeychain,AddKeysToAgent
|
|
UseKeychain yes
|
|
AddKeysToAgent yes
|
|
UpdateHostKeys ask
|
|
VerifyHostKeyDNS yes
|
|
'';
|
|
|
|
matchBlocks = {
|
|
# Work
|
|
|
|
"git.app.nedeco.de" = {
|
|
port = 22;
|
|
user = "git";
|
|
identitiesOnly = true;
|
|
identityFile = "~/.ssh/nedeco_gitlab";
|
|
compression = true;
|
|
};
|
|
|
|
"nedeco-smartos-hosting" = {
|
|
host = "10.0.90.*";
|
|
port = 22;
|
|
user = "root";
|
|
identitiesOnly = true;
|
|
identityFile = "~/.ssh/nedeco";
|
|
};
|
|
|
|
# Private
|
|
|
|
"github.com" = {
|
|
port = 22;
|
|
user = "git";
|
|
identitiesOnly = true;
|
|
identityFile = "~/.ssh/GitHub";
|
|
compression = true;
|
|
};
|
|
|
|
"gitlab.com" = {
|
|
port = 22;
|
|
user = "git";
|
|
identitiesOnly = true;
|
|
identityFile = "~/.ssh/GitLab";
|
|
compression = true;
|
|
};
|
|
|
|
"router" = {
|
|
hostname = "10.0.0.1";
|
|
port = 22;
|
|
user = "root";
|
|
};
|
|
|
|
"nas" = {
|
|
hostname = "10.0.0.100";
|
|
port = 22;
|
|
user = "daniel";
|
|
identitiesOnly = true;
|
|
identityFile = "~/.ssh/freenas";
|
|
compression = true;
|
|
};
|
|
};
|
|
|
|
includes = [
|
|
"~/.ssh/config_work"
|
|
];
|
|
};
|
|
|
|
home.file."${signers-directory}" = {
|
|
source = ../config/ssh/allowed_signers;
|
|
recursive = true;
|
|
};
|
|
}
|