From 819f197a6866edbb78627ae00455a237807792b0 Mon Sep 17 00:00:00 2001
From: sinanmohd <sinan@sinanmohd.com>
Date: Sun, 8 Feb 2026 10:51:07 +0530
Subject: chore(os): update ssh keys and enable ssh by default

---
 os/common/configuration.nix      | 6 ++++++
 os/common/modules/user.nix       | 2 +-
 os/kay/modules/services/sftp.nix | 5 -----
 os/server/configuration.nix      | 6 ------
 4 files changed, 7 insertions(+), 12 deletions(-)

(limited to 'os')

diff --git a/os/common/configuration.nix b/os/common/configuration.nix
index 7b6b956..2fc5534 100644
--- a/os/common/configuration.nix
+++ b/os/common/configuration.nix
@@ -72,4 +72,10 @@ in
       "slack"
       "spotify"
     ];
+
+  programs.mosh.enable = true;
+  services.openssh = {
+    enable = true;
+    settings.PasswordAuthentication = false;
+  };
 }
diff --git a/os/common/modules/user.nix b/os/common/modules/user.nix
index 13a9046..9bf0ebe 100644
--- a/os/common/modules/user.nix
+++ b/os/common/modules/user.nix
@@ -12,7 +12,7 @@ in
 
     initialHashedPassword = "$y$j9T$5yekb7UNR3e1bHrPLqH/F.$zVIIDLBY4snxLQcdGCb1aHD2rIhs96fvdvPdNkstFcD";
     openssh.authorizedKeys.keys = [
-      "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIMQu223dTF1J2Iw2TuKVt3SPT4cjtY90TMTxFGxP7DP7 sinan@exy"
+      "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIJnqxnFFvG1R/ZfP9GjRem3V9GfSK5pM1uEmsQZrMGWX sinan@exy"
       "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIL8LnyOuPmtKRqAZeHueNN4kfYvpRQVwCivSTq+SZvDU sinan@cez"
     ];
   };
diff --git a/os/kay/modules/services/sftp.nix b/os/kay/modules/services/sftp.nix
index f75abc4..f5695f3 100644
--- a/os/kay/modules/services/sftp.nix
+++ b/os/kay/modules/services/sftp.nix
@@ -15,11 +15,6 @@ in
       isNormalUser = true;
       openssh.authorizedKeys.keys = [
         "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIFmA1dyV+o9gfoxlbVG0Y+dn3lVqdFs5fMqfxyNc5/Lr sftp@cez"
-        # https://github.com/zhanghai/MaterialFiles
-        "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAILxKrIaWRACi0oKfJRv6m3uUWKjKNyd9edbbFR5pAONH sftp@paq"
-        # samsung files only support PEM, hence RSA key
-        # https://r1.community.samsung.com/t5/galaxy-s/unable-to-remotely-connect-to-sftp-server-through-my-files/m-p/16347552/highlight/true#M105871
-        "ssh-rsa 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 sftp@paq"
       ]
       ++ pubKeys;
     };
diff --git a/os/server/configuration.nix b/os/server/configuration.nix
index c47f560..341d0da 100644
--- a/os/server/configuration.nix
+++ b/os/server/configuration.nix
@@ -4,10 +4,4 @@
 
   networking.hostName = lib.mkOptionDefault "server";
   security.sudo.wheelNeedsPassword = false;
-
-  programs.mosh.enable = true;
-  services.openssh = {
-    enable = true;
-    settings.PasswordAuthentication = false;
-  };
 }
-- 
cgit v1.2.3