From d73d2be924142b9e4379cb123f5d64b2a8bfc912 Mon Sep 17 00:00:00 2001
From: Spectre <ole@benstem.de>
Date: Fri, 7 Jun 2024 14:19:39 +0200
Subject: [PATCH] ssh

---
 home/default.nix   | 2 +-
 system/default.nix | 1 +
 system/sops.nix    | 2 ++
 system/ssh.nix     | 9 +++++++++
 system/users.nix   | 2 +-
 5 files changed, 14 insertions(+), 2 deletions(-)
 create mode 100644 system/sops.nix
 create mode 100644 system/ssh.nix

diff --git a/home/default.nix b/home/default.nix
index 0f2b5b3d..b10ce86f 100644
--- a/home/default.nix
+++ b/home/default.nix
@@ -1,4 +1,4 @@
-{...}: {
+{
   user = [
   ];
 }
diff --git a/system/default.nix b/system/default.nix
index a5971631..4b47308d 100644
--- a/system/default.nix
+++ b/system/default.nix
@@ -10,6 +10,7 @@
     ./fonts.nix
     ./nix.nix
     ./users.nix
+    ./ssh.nix
     ./steam.nix
   ];
 
diff --git a/system/sops.nix b/system/sops.nix
new file mode 100644
index 00000000..ea8f50d4
--- /dev/null
+++ b/system/sops.nix
@@ -0,0 +1,2 @@
+{...}: {
+}
diff --git a/system/ssh.nix b/system/ssh.nix
new file mode 100644
index 00000000..0e47ec24
--- /dev/null
+++ b/system/ssh.nix
@@ -0,0 +1,9 @@
+{...}: {
+  services.openssh = {
+    enable = true;
+    settings = {
+      PermitRootLogin = "no";
+      PasswordAuthentication = false;
+    };
+  };
+}
diff --git a/system/users.nix b/system/users.nix
index d7cbaa69..98814ee9 100644
--- a/system/users.nix
+++ b/system/users.nix
@@ -9,7 +9,7 @@
       isNormalUser = true;
       uid = conf.uid;
       extraGroups = ["wheel" "networkmanager"];
-      hashedPasswordFile = config.sops.secrets."user/hashedPassword".path;
+      hashedPasswordFile = config.sops.secrets."user/password".path;
     };
   };