Infinidoge/universe
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

global/security: don't generate RSA host keys

Browse source
This commit is contained in:
Infinidoge 2024-03-20 17:14:18 -04:00
parent 8a7b71bcb7
commit e5eee00ec1
Signed by: Infinidoge
SSH key fingerprint: SHA256:oAMyvotlNFraMmZmr+p6AxnNfW/GioTs1pOn3V4tQ7A
1 changed files with 2 additions and 12 deletions
Download patch file Download diff file Expand all files Collapse all files

14
modules/global/security.nix
View file

@ -39,20 +39,10 @@ with lib;
enable = true; enable = true;
openFirewall = mkDefault true; openFirewall = mkDefault true;
settings.X11Forwarding = mkDefault false; settings.X11Forwarding = mkDefault false;
hostKeys = mkDefault [ hostKeys = mkDefault [{
{
bits = 4096;
openSSHFormat = true;
path = "/etc/ssh/ssh_host_rsa_key";
rounds = 100;
type = "rsa";
}
{
path = "/etc/ssh/ssh_host_ed25519_key"; path = "/etc/ssh/ssh_host_ed25519_key";
rounds = 100;
type = "ed25519"; type = "ed25519";
} }];
];
}; };
services.nginx = { services.nginx = {