diff --git a/home/rachel.nix b/home/rachel.nix index 942212b..a4bccfd 100644 --- a/home/rachel.nix +++ b/home/rachel.nix @@ -350,5 +350,19 @@ in ''; in "${tmux-menu}"; }; }; + + ssh = { + enable = true; + matchBlocks = { + remarkable = { + hostname = "10.11.99.1"; + user = "root"; + }; + lazarus = { + hostname = "rachel.cafe"; + user = "deppy"; + }; + }; + }; }; } diff --git a/lambda/configuration.nix b/lambda/configuration.nix index b0bc675..8dc9190 100644 --- a/lambda/configuration.nix +++ b/lambda/configuration.nix @@ -63,6 +63,14 @@ networking.nameservers = [ "8.8.8.8" ]; networking.resolvconf.dnsExtensionMechanism = false; + services.openssh = { + enable = true; + settings = { + PasswordAuthentication = true; + PermitRootLogin = false; + }; + }; + # [NFS] fileSystems."/home/rachel/music" = { device = "rachel.cafe:/srv/music"; @@ -145,7 +153,7 @@ # [SECURITY / FIREWALL] networking.firewall.enable = true; - networking.firewall.allowedTCPPorts = [ ]; + networking.firewall.allowedTCPPorts = [ 22 ]; networking.firewall.allowedUDPPorts = [ ]; programs.gnupg.agent = { enable = true;