prefect: enable SSH
2 files changed, 8 insertions(+), 0 deletions(-)
M system/prefect.nix → system/prefect.nix
@@ -73,6 +73,11 @@ ''; }; networking.firewall.allowedTCPPorts = [ config.services.postgresql.port ]; + services.openssh = { + enable = true; + openFirewall = false; + startWhenNeeded = true; + }; networking.firewall.extraCommands = '' iptables -A nixos-fw -p udp --source 172.30.44.0/24 -j nixos-fw-accept iptables -A nixos-fw -p tcp --source 172.30.44.0/24 -j nixos-fw-accept
M system/settings/configuration/user.nix → system/settings/configuration/user.nix
@@ -8,5 +8,8 @@ shell = "/run/current-system/sw/bin/zsh"; initialPassword = "password"; home = "/home/alan"; uid = 1000; + openssh.authorizedKeys.keys = [ + "ecdsa-sha2-nistp256 AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAABBBDRIsbc/xJGxEJGCCNT99kQhB1N84jPlPtrqSVF/OxbGenvk2HWbL/q/YpEUkG5eQrfV5jK8nXfNfjSsPDjF96A= alan@alanpearce.eu (sekey)" + ]; }; }