From 21747212dd51daa728adf8f476a3db5c528011cf Mon Sep 17 00:00:00 2001 From: Bruno BELANYI Date: Sun, 7 Feb 2021 10:39:13 +0000 Subject: [PATCH] porthos: services: extract ssh-server --- porthos/services.nix | 9 ++------- services/default.nix | 1 + services/ssh-server.nix | 23 +++++++++++++++++++++++ 3 files changed, 26 insertions(+), 7 deletions(-) create mode 100644 services/ssh-server.nix diff --git a/porthos/services.nix b/porthos/services.nix index d75f7ca..cda6d7c 100644 --- a/porthos/services.nix +++ b/porthos/services.nix @@ -35,6 +35,8 @@ in rss-bridge.enable = true; # Usenet client sabnzbd.enable = true; + # Because I stilll need to play sysadmin + ssh-server.enable = true; # Torrent client and webui transmission = { enable = true; @@ -47,11 +49,4 @@ in enable = true; enableSSHSupport = true; }; - - programs.mosh.enable = true; # Opens the relevant UDP ports. - - # Enable the OpenSSH daemon. - services.openssh.enable = true; - services.openssh.permitRootLogin = "no"; - services.openssh.passwordAuthentication = false; } diff --git a/services/default.nix b/services/default.nix index 023481f..a6d8a6d 100644 --- a/services/default.nix +++ b/services/default.nix @@ -14,6 +14,7 @@ ./quassel.nix ./rss-bridge.nix ./sabnzbd.nix + ./ssh-server.nix ./transmission.nix ]; } diff --git a/services/ssh-server.nix b/services/ssh-server.nix new file mode 100644 index 0000000..a41a673 --- /dev/null +++ b/services/ssh-server.nix @@ -0,0 +1,23 @@ +# An SSH server, using 'mosh' +{ config, lib, ... }: +let + cfg = config.my.services.ssh-server; +in +{ + options.my.services.ssh-server = { + enable = lib.mkEnableOption "SSH Server using 'mosh'"; + }; + + config = lib.mkIf cfg.enable { + services.openssh = { + # Enable the OpenSSH daemon. + enable = true; + # Be more secure + permitRootLogin = "no"; + passwordAuthentication = false; + }; + + # Opens the relevant UDP ports. + programs.mosh.enable = true; + }; +}