steam xwayland
This commit is contained in:
Geir Okkenhaug Jerstad
parent
1b915a7610
commit
fc1482494f
3 changed files with 352 additions and 36 deletions
|
|
@ -1,10 +1,13 @@
|
|||
# SSH Key Management Module
|
||||
# Two-key strategy: admin (sma) and development (geir)
|
||||
{ config, pkgs, lib, ... }:
|
||||
|
||||
{
|
||||
config,
|
||||
pkgs,
|
||||
lib,
|
||||
...
|
||||
}: {
|
||||
# Firewall configuration for SSH
|
||||
networking.firewall.allowedTCPPorts = [ 22 ];
|
||||
networking.firewall.allowedTCPPorts = [22];
|
||||
|
||||
# Global SSH daemon configuration
|
||||
services.openssh = {
|
||||
|
|
@ -15,7 +18,7 @@
|
|||
PermitRootLogin = "no";
|
||||
PubkeyAuthentication = true;
|
||||
};
|
||||
|
||||
|
||||
# Use modern, secure algorithms only
|
||||
extraConfig = ''
|
||||
PubkeyAcceptedKeyTypes ssh-ed25519,ssh-ed25519-cert-v01@openssh.com
|
||||
|
|
@ -35,46 +38,46 @@
|
|||
AddKeysToAgent yes
|
||||
ServerAliveInterval 60
|
||||
ServerAliveCountMax 3
|
||||
|
||||
|
||||
# Admin access to servers (use sma user)
|
||||
Host admin-* *.admin
|
||||
Host admin-* *.admin
|
||||
User sma
|
||||
IdentityFile ~/.ssh/id_ed25519_admin
|
||||
|
||||
|
||||
# Git services (use geir user with dev key)
|
||||
Host git.* github.com gitlab.com
|
||||
User git
|
||||
IdentityFile ~/.ssh/id_ed25519_dev
|
||||
|
||||
IdentityFile ~/.ssh/id_ed25519
|
||||
|
||||
# Home lab servers (geir user for development access)
|
||||
Host sleeper-service sleeper-service.home 10.0.0.8
|
||||
User geir
|
||||
IdentityFile ~/.ssh/id_ed25519_dev
|
||||
|
||||
|
||||
Host grey-area grey-area.home 10.0.0.12
|
||||
User geir
|
||||
IdentityFile ~/.ssh/id_ed25519_dev
|
||||
|
||||
|
||||
Host reverse-proxy reverse-proxy.home 46.226.104.98
|
||||
User geir
|
||||
IdentityFile ~/.ssh/id_ed25519_dev
|
||||
|
||||
|
||||
# Admin access to servers (when needed)
|
||||
Host admin-sleeper sleeper-service.admin
|
||||
Hostname 10.0.0.8
|
||||
User sma
|
||||
IdentityFile ~/.ssh/id_ed25519_admin
|
||||
|
||||
|
||||
Host admin-grey grey-area.admin
|
||||
Hostname 10.0.0.12
|
||||
User sma
|
||||
IdentityFile ~/.ssh/id_ed25519_admin
|
||||
|
||||
|
||||
Host admin-reverse reverse-proxy.admin
|
||||
Hostname 46.226.104.98
|
||||
User sma
|
||||
IdentityFile ~/.ssh/id_ed25519_admin
|
||||
|
||||
|
||||
# Tailscale network
|
||||
Host 100.* *.tail*
|
||||
User geir
|
||||
|
|
|
|||
|
|
@ -48,6 +48,7 @@ in {
|
|||
kitty
|
||||
terminator
|
||||
starship
|
||||
ghostty
|
||||
|
||||
# Essential system tools (moved duplicates to base.nix)
|
||||
mc
|
||||
|
|
@ -97,10 +98,12 @@ in {
|
|||
|
||||
# Emacs Integration
|
||||
emacsPackages.vterm
|
||||
|
||||
# Gaming
|
||||
steam
|
||||
# Desktop integration (moved from system)
|
||||
dbus
|
||||
wayland
|
||||
xwayland
|
||||
xdg-utils
|
||||
];
|
||||
};
|
||||
|
|
|
|||
Loading…
Add table
Add a link
Reference in a new issue