39 lines
No EOL
2 KiB
Nix
39 lines
No EOL
2 KiB
Nix
{ inputs, config, lib, pkgs, modulesPath, desktop, username, ... }: {
|
|
# https://nixos.wiki/wiki/Remote_LUKS_Unlocking
|
|
# Unlock command:
|
|
# ssh root@<Local_IP_Address> "Password"
|
|
|
|
boot.kernelParams = [ "ip=dhcp" ];
|
|
|
|
boot.initrd = {
|
|
enable = true;
|
|
systemd.users.root.shell = "/bin/systemd-tty-ask-password-agent";
|
|
availableKernelModules = [ "cdc_ncm" ];
|
|
network.enable = true;
|
|
network.ssh = {
|
|
enable = true;
|
|
port = 22;
|
|
authorizedKeys = [
|
|
# albert@nixos-vm-01
|
|
''ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIFnjCBEWaHzD1OVwT0rtwh91Hb4iAdgkYnE4MKKANgE0 albert@nixos-vm-01''
|
|
# (Thu Dec 28 19:30:06 JST 2023) albert@framework-server
|
|
''ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIAODamRCvyVOGmMSMXWdUzjcM2GsApizCvXEWKHiKhGk albert@framework-server''
|
|
# (Fri Dec 15 09:34:02 AM UTC 2023) albert@piaware-rpi4
|
|
''ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAINR8PCfKOTArLemqmnHom4vWJ6u8wrlpG6/gSqeYo/qD albert@piaware-rpi4''
|
|
# (Fri Dec 15 11:40:53 AM UTC 2023) albert@backups-rpi4
|
|
''ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIGNkKoS32K487JaFza9TUFwrjwe9P7SNIHbVNxhzmRcI albert@backups-rpi4''
|
|
# (Thu Dec 28 10:56:22 AM UTC 2023) pixel-5
|
|
''ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIP7HMCutPvexUsbjAzpd0ZOsmVtg80MOaGnCOv+I3UBf pixel-5''
|
|
# (Wed Jan 3 07:14:24 PM JST 2024) albert@nixos-framework
|
|
''ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIDNDXWvXbSG/AJfA+pXSqO5MKm3lDL/sIxIiZI7DZxs5 albert@nixos-framework''
|
|
# (Tue Jan 09 21:06:13 PM JST 2024) albert@win10-desktop
|
|
''ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIBoc3kLXP65AjxdIgzQBlq1rdhR+K7tPCzvYXOihKfPG albert@win10-desktop''
|
|
];
|
|
hostKeys = [
|
|
# Generate new keys with:
|
|
# ssh-keygen -t rsa -N "" -f /boot/ssh_host_rsa_key
|
|
"/boot/ssh_host_rsa_key"
|
|
];
|
|
};
|
|
};
|
|
} |