From 8defc97c6d3e78867c5aa7e4eb655bb4f72f3d92 Mon Sep 17 00:00:00 2001 From: rotterdam Date: Mon, 6 Mar 2023 14:33:32 -0300 Subject: [PATCH] managing ssh keys --- hosts/common/users.nix | 5 ++++- hosts/desktops/rotterdam.nix | 1 + secrets/keycloakpg-pass.age | 9 --------- secrets/secrets.nix | 4 ++-- 4 files changed, 7 insertions(+), 12 deletions(-) delete mode 100644 secrets/keycloakpg-pass.age diff --git a/hosts/common/users.nix b/hosts/common/users.nix index d7fb92e..a60a474 100644 --- a/hosts/common/users.nix +++ b/hosts/common/users.nix @@ -15,7 +15,10 @@ }; root = { shell = pkgs.fish; - openssh.authorizedKeys.keys = [ "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIKcwF1yuWEfYGScNocEbs0AmGxyTIzGc4/IhpU587SJE" ]; + openssh.authorizedKeys.keys = [ + "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIKcwF1yuWEfYGScNocEbs0AmGxyTIzGc4/IhpU587SJE" + "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIA1v3+q3EaruiiStWjubEJWvtejam/r41uoOpCdwJtLL" + ]; hashedPassword = "!"; }; }; diff --git a/hosts/desktops/rotterdam.nix b/hosts/desktops/rotterdam.nix index 90c9510..7baf732 100644 --- a/hosts/desktops/rotterdam.nix +++ b/hosts/desktops/rotterdam.nix @@ -26,6 +26,7 @@ boot.kernelParams = [ "processor.max_cstate=1" # Fixes bug where ryzen cpus freeze when in highest C state + "clearcpuid=514" ]; environment.sessionVariables = rec { diff --git a/secrets/keycloakpg-pass.age b/secrets/keycloakpg-pass.age deleted file mode 100644 index 9bc6f0d..0000000 --- a/secrets/keycloakpg-pass.age +++ /dev/null @@ -1,9 +0,0 @@ -age-encryption.org/v1 --> ssh-ed25519 SP9f6A DH+OPIjNpoPzAR2lBcWK6pGxLxVOT5GYO+cv8RFiShY -tYmZD4rjyyZ7f+AKO7F4awGhkMTaMtLy/m2GixEKoD0 --> ssh-ed25519 J6tVTA t+dbGkgho9+2EVD0e1E6wpHYX4LkoeOOckrIv3IjrhA -Rp2W2+AzY55aFLiHuyDf2sX5aKm2lKV2b2oWBxdia3c --> =]sa>-grease _0gk(L an-* 0=Q"|= -sVKQXYirZvI ---- JGBE8D8b1ji7xqeoF2stjMAWR/JsIWTEPFbhCx4n+Sg -BKjd)~O-tQ;ўK6bBN lD=^Ӣܪ=YH \ No newline at end of file diff --git a/secrets/secrets.nix b/secrets/secrets.nix index 1306581..d03513c 100644 --- a/secrets/secrets.nix +++ b/secrets/secrets.nix @@ -1,6 +1,7 @@ let io = "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIKCIrKJk5zWzWEHvLMPMK8T3PyeBjsCsqzxPN+OrXfhA"; - desktops = [ io ]; + rotterdam = "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIA1v3+q3EaruiiStWjubEJWvtejam/r41uoOpCdwJtLL" + desktops = [ io rotterdam ]; alexandria = "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIK95QueW+jp1ZmF299Xr3XkgHJ6dL7aZVsfWxqbOKVKA"; servers = [ alexandria ]; @@ -9,6 +10,5 @@ let in { "cloudflare-creds.age".publicKeys = all-hosts; - "keycloakpg-pass.age".publicKeys = all-hosts; "paperless-pass.age".publicKeys = all-hosts; }