diff options
| author | EuAndreh <eu@euandre.org> | 2023-03-03 14:55:48 -0300 |
|---|---|---|
| committer | EuAndreh <eu@euandre.org> | 2023-03-03 14:57:54 -0300 |
| commit | aa393d0ab63a382340e5972b08b41488e53785bc (patch) | |
| tree | d9f08c3d6643f85bc852673fda6c56d14b32456b | |
| parent | bin/re: Add working utility (diff) | |
| download | dotfiles-aa393d0ab63a382340e5972b08b41488e53785bc.tar.gz dotfiles-aa393d0ab63a382340e5972b08b41488e53785bc.tar.xz | |
Don't hardcode value for SSH authorized_keys
Instead of using (local-file ...) in the openssh-service-type
configuration, and then replicating that on configuration.nix, instead
remove the hardcoded values from the system configuration and make it
dynamic, by putting it on the ~/.ssh/authorized_keys file itself.
| -rw-r--r-- | etc/guix/system.scm | 5 | ||||
| -rw-r--r-- | etc/ssh/authorized_keys | 1 |
2 files changed, 1 insertions, 5 deletions
diff --git a/etc/guix/system.scm b/etc/guix/system.scm index 8cbd78f..5ed6a93 100644 --- a/etc/guix/system.scm +++ b/etc/guix/system.scm @@ -460,11 +460,6 @@ Seiko Epson Color Ink Jet Printers.") (service openssh-service-type (openssh-configuration (password-authentication? #f) - (authorized-keys - `((,whoami ,(local-file - (string-append (or (getenv "XDG_CONFIG_HOME") - (string-append (getenv "HOME") "/.ssh")) - "/ssh/id_rsa.pub"))))) (extra-content #"- ClientAliveInterval 30 ClientAliveCountMax 20 diff --git a/etc/ssh/authorized_keys b/etc/ssh/authorized_keys index cae7d8e..ba5013b 100644 --- a/etc/ssh/authorized_keys +++ b/etc/ssh/authorized_keys @@ -1 +1,2 @@ command="borg1 serve --append-only --restrict-to-repository /media/andreh/UTCLOUD/borg/euandre.org/",restrict ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAABgQC0o73ml7gMPhw/EwjIof6ph5PHPAL5EFDrP7PPZ9xCES79nSKZ0r40uW2RNp2Gzwb/QYtbr/aFkuX11Eo739upnj5cydyr4AHPLgoBoPVbn7/0/IIkin4r31GrWYdGzXRZSB5Tz0Za58OYW0RiUVHffx/E5+tOBQ2SMc6WK9/Q6FljGrD3yK/KYgZhcvmfsDTv2DGhFFORoUQSfGGwmRMJXGVPG2lDqoD3I3CWF34Y/b9GRHdSFgHy3iOas03WTsMaOSosmuF9MMm8Zn2515XGXU+uirsUJrFOa5leRBEvoEmx+WsB6CULn0PKk+ieghcq8z4j5oR1AOUFeSSJVIvlOyyt8x5rqLW8CvPFtU982LZrAq/DCcuaIkx/ww/cIbkUIN52Tv1Ia8jfV2aqRJ4hRshsuh9mj5fUlp+jmrMY6Ww5tl24OKrKRAT6pr5Fzgip927BkLPKJFClcp5fzZJLUiwNihYfuR5J+VselMPfxoTXfNVj/hsINclj2CLoCTM= andreh@toph +ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAACAQDnUv7iWOejQNa3fZ6v4lkHT6qFRp2+NuzIpFJ2Vy7eP58XZoiz6HJPcCU8Hf95JXwaXEwS4S7mXdw1x60hd8JIe058Ek6MZSSVQmlLfocGsAYj1wTrLmnQ8+PV0IeQlNj1aytBI1fL+v3IPt+JdLt6b+g3vwcEUU9efzxx2E0KZ5GIpb2meiCQ6ha+tcd7XqegB53eQj/h/coE2zLJodpaJ3xbj894pE/OJCNC0+4d0Sv7oHhY7QoLYldTQbSgPyhyfl4iZpJf6OEPZxK2cJaB+cbeoBB6aGNyU+CIJToM+uAJJ7H7EpvxfcnfJQ1PuY5szTdvFbW820euiUEKEW69mW4uaFNPSc6D4Z8tZ5hXQIqBD40irULhF0CYNkIILmyNV/KJIZ5HkbQ1q+UrCFHJyvuH/3aCTjj9OSfE7xHPQ3xd3Xw8vvj0Mjie09xFbbcklBTw5WRzH7cw8c+Q0O69kZZ8b+ykcdzWTeZeWNdnzptNqnMjfheig90rUIJ7DN0c+53jCUcGpWJxJhcYF9Uk1RNHmSE5+VzK1y+20t0grVFX90nApm4Tl35QPrX7Qxp9C81cWiUB8xCAE6jYrmd4x+P/3wSQfc1Xg0Eg3QjJB+6JD7cbyDJpzDR3ja+CLZCAr9I0B4rDKD2d6et/z67iXPnZUWMyZ8RVVZPFbBMOTw== openpgp:0xF727046D |