tv sshd: init

author: tv <tv@krebsco.de> 2016-07-23 13:11:50 +0200
committer: tv <tv@krebsco.de> 2016-07-23 13:11:50 +0200
commit: ea74d584d2b836d6971f3d4675e3a9c44b68f8f5 (patch)
tree: 5bede088799bb87922e173a45d29de9d8d7baa85 /tv
parent: 018f498918d0bd8c0f9c5c3324221afffc95bc67 (diff)
2 files changed, 17 insertions, 10 deletions
diff --git a/tv/2configs/default.nix b/tv/2configs/default.nix
index c77c9ce..7992c90 100644
--- a/tv/2configs/default.nix
+++ b/tv/2configs/default.nix
@@ -30,6 +30,7 @@ with config.krebs.lib;
     ./bash.nix
     ./nginx
     ./ssh.nix
+    ./sshd.nix
     ./vim.nix
     {
       # stockholm dependencies
@@ -136,16 +137,6 @@ with config.krebs.lib;
     }
 
     {
-      services.openssh = {
-        enable = true;
-        hostKeys = [
-          { type = "ed25519"; path = "/etc/ssh/ssh_host_ed25519_key"; }
-        ];
-      };
-      tv.iptables.input-internet-accept-tcp = singleton "ssh";
-    }
-
-    {
       environment.systemPackages = [
         pkgs.get
         pkgs.krebszones
diff --git a/tv/2configs/sshd.nix b/tv/2configs/sshd.nix
new file mode 100644
index 0000000..943f32f
--- /dev/null
+++ b/tv/2configs/sshd.nix
@@ -0,0 +1,16 @@
+{ config, lib, pkgs, ... }:
+
+with config.krebs.lib;
+
+{
+  services.openssh = {
+    enable = true;
+    hostKeys = [
+      {
+        type = "ed25519";
+        path = "/etc/ssh/ssh_host_ed25519_key";
+      }
+    ];
+  };
+  tv.iptables.input-internet-accept-tcp = singleton "ssh";
+}
author	tv <tv@krebsco.de>	2016-07-23 13:11:50 +0200
committer	tv <tv@krebsco.de>	2016-07-23 13:11:50 +0200
commit	ea74d584d2b836d6971f3d4675e3a9c44b68f8f5 (patch)
tree	5bede088799bb87922e173a45d29de9d8d7baa85 /tv
parent	018f498918d0bd8c0f9c5c3324221afffc95bc67 (diff)