29 lines
No EOL
626 B
Nix
29 lines
No EOL
626 B
Nix
let
|
|
secrets = import ../intermediate/secrets.nix;
|
|
users = builtins.attrNames secrets.source.openssh.users;
|
|
in
|
|
rec {
|
|
ssh_users = users;
|
|
|
|
extraConfig = {
|
|
users = {
|
|
"autossh-incoming" = ''
|
|
PasswordAuthentication no
|
|
PermitTTY no
|
|
X11Forwarding no
|
|
AllowAgentForwarding no
|
|
PermitTunnel no
|
|
AllowTcpForwarding remote
|
|
PermitListen localhost:*
|
|
PermitListen 127.0.0.1:*
|
|
'';
|
|
"tunnel" = ''
|
|
AllowTcpForwarding yes
|
|
PermitTTY no
|
|
X11Forwarding no
|
|
PermitTunnel no
|
|
AllowAgentForwarding no
|
|
'';
|
|
};
|
|
};
|
|
} |