summary refs log tree commit diff stats
path: root/system
diff options
context:
space:
mode:
authorSoispha <soispha@vhack.eu>2023-07-04 21:36:35 +0200
committerSoispha <soispha@vhack.eu>2023-07-04 21:36:35 +0200
commitf3f8e43a670b2f8e745ef93b4f6d04ca9cf8d4c5 (patch)
tree8bb15b4b6463b70e82765166fc3f42147b995101 /system
parentFix(system/services/nginx): Create nix-sync cache through impermanence (diff)
downloadnixos-server-f3f8e43a670b2f8e745ef93b4f6d04ca9cf8d4c5.tar.gz
nixos-server-f3f8e43a670b2f8e745ef93b4f6d04ca9cf8d4c5.zip
Fix(system/services/openssh): Set correct permissions on ssh dir
Diffstat (limited to '')
-rw-r--r--system/file_system_layouts/impermanence.nix6


-rw-r--r--system/services/openssh/default.nix2


2 files changed, 7 insertions, 1 deletions
diff --git a/system/file_system_layouts/impermanence.nix b/system/file_system_layouts/impermanence.nix
index 7e8a659..69af468 100644
--- a/system/file_system_layouts/impermanence.nix
+++ b/system/file_system_layouts/impermanence.nix
@@ -13,6 +13,12 @@
           group = "nix-sync";
           mode = "0700";
         }
+        {
+          directory = "/var/lib/sshd";
+          user = "root";
+          group = "root";
+          mode = "0700";
+        }
       ];
       files = [
         "/etc/machine-id"
diff --git a/system/services/openssh/default.nix b/system/services/openssh/default.nix
index 1bb37ee..8b28cbd 100644
--- a/system/services/openssh/default.nix
+++ b/system/services/openssh/default.nix
@@ -4,7 +4,7 @@
     settings.PasswordAuthentication = false;
     hostKeys = [
       {
-        path = "/srv/sshd/ssh_host_ed25519_key";
+        path = "/var/lib/sshd/ssh_host_ed25519_key";
         rounds = 1000;
         type = "ed25519";
       }

 

generated by cgit-pink 1.4.1 (git 2.36.1) at 2024-11-29 17:34:50 +0000