nix/module/common/Sshd.nix

{ ... }: {
	services.openssh = {
		enable    = true;
		allowSFTP = true;
		ports = [ 22143 ];
		listenAddresses = [
			{
				addr = "0.0.0.0";
				port = 22143;
			}
		];
		settings = {
			AllowUsers      = [ "root" ];
			LoginGraceTime  = "1m";
			MaxAuthTries    = 1;
			MaxSessions     = 10;
			PermitRootLogin = "yes";
			StrictModes     = false;

			UseDns = false;
			UsePAM = true;

			GSSAPIAuthentication         = false;
			HostbasedAuthentication      = false;
			KbdInteractiveAuthentication = true;
			KerberosAuthentication       = false;
			PasswordAuthentication       = true;
			PermitEmptyPasswords         = false;
			PubkeyAuthentication         = false;
		};
	};
}
Migrate from dotfiles to full nix config. See voronind/linux for history. 2024-03-04 00:34:39 +03:00			`{ ... }: {`
			`services.openssh = {`
			`enable = true;`
			`allowSFTP = true;`
			`ports = [ 22143 ];`
			`listenAddresses = [`
			`{`
			`addr = "0.0.0.0";`
			`port = 22143;`
			`}`
			`];`
			`settings = {`
			`AllowUsers = [ "root" ];`
			`LoginGraceTime = "1m";`
			`MaxAuthTries = 1;`
			`MaxSessions = 10;`
			`PermitRootLogin = "yes";`
			`StrictModes = false;`

			`UseDns = false;`
			`UsePAM = true;`

			`GSSAPIAuthentication = false;`
			`HostbasedAuthentication = false;`
			`KbdInteractiveAuthentication = true;`
			`KerberosAuthentication = false;`
			`PasswordAuthentication = true;`
			`PermitEmptyPasswords = false;`
			`PubkeyAuthentication = false;`
			`};`
			`};`
			`}`