diff options
| author | sinanmohd <sinan@sinanmohd.com> | 2025-10-17 08:31:18 +0530 |
|---|---|---|
| committer | sinanmohd <sinan@sinanmohd.com> | 2025-10-17 08:45:14 +0530 |
| commit | 84c39b405972516a9be2e8be8729097f8691050f (patch) | |
| tree | 5a63186f3004e36a0f7560ee90ef358bd3662aa9 /os/kay/modules/sshfwd.nix | |
| parent | 5fd8a7084e907f4c1b4c2c86cfd69f622b4c294a (diff) | |
chore(os/kay): refactor
Diffstat (limited to 'os/kay/modules/sshfwd.nix')
| -rw-r--r-- | os/kay/modules/sshfwd.nix | 32 |
1 files changed, 0 insertions, 32 deletions
diff --git a/os/kay/modules/sshfwd.nix b/os/kay/modules/sshfwd.nix deleted file mode 100644 index fcafd17..0000000 --- a/os/kay/modules/sshfwd.nix +++ /dev/null @@ -1,32 +0,0 @@ -{ ... }: -let - group = "sshfwd"; -in -{ - networking.firewall.allowedTCPPorts = [ 2222 ]; - - users = { - groups.${group}.members = [ ]; - - users."lia" = { - inherit group; - isSystemUser = true; - - openssh.authorizedKeys.keys = [ - "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIAe7fJlh9L+9JSq0+hK7jNZjszmZqNXwzqcZ+zx0yJyU lia" - ]; - }; - }; - - services.openssh.extraConfig = '' - Match Group ${group} - ForceCommand echo 'this account is only usable for remote forwarding' - PermitTunnel no - AllowAgentForwarding no - X11Forwarding no - - AllowTcpForwarding remote - GatewayPorts clientspecified - PermitListen *:2222 - ''; -} |