From 328c741b1aac74020412e99e0dca7c728dbc92fa Mon Sep 17 00:00:00 2001
From: Freya Murphy <freya@freyacat.org>
Date: Mon, 23 Jun 2025 22:33:44 -0400
Subject: refactor

---
 programs/ssh/config      | 12 ------------
 programs/ssh/default.nix | 45 ---------------------------------------------
 2 files changed, 57 deletions(-)
 delete mode 100644 programs/ssh/config
 delete mode 100644 programs/ssh/default.nix

(limited to 'programs/ssh')

diff --git a/programs/ssh/config b/programs/ssh/config
deleted file mode 100644
index 5ae97b6..0000000
--- a/programs/ssh/config
+++ /dev/null
@@ -1,12 +0,0 @@
-Match Host * exec "gpg-connect-agent UPDATESTARTUPTTY /bye"
-
-Host *.in.freya.cat cid.freya.cat alivemc.net
-    User root
-
-Host *.cs.rit.edu
-    User tam2214
-
-Host *
-    HostkeyAlgorithms +ssh-rsa
-    PubkeyAcceptedKeyTypes +ssh-rsa
-    KexAlgorithms -sntrup761x25519-sha512@openssh.com
diff --git a/programs/ssh/default.nix b/programs/ssh/default.nix
deleted file mode 100644
index b6ecb1d..0000000
--- a/programs/ssh/default.nix
+++ /dev/null
@@ -1,45 +0,0 @@
-{
-  config,
-  lib,
-  ...
-}: {
-  # ssh config
-  home-manager.users.${config.user} = {
-    programs.ssh = {
-      enable = true;
-      extraConfig = lib.fileContents ./config;
-    };
-  };
-
-  # sshd
-  services.openssh = {
-    enable = true;
-    ports = [22];
-    settings = {
-      PasswordAuthentication = false;
-      KbdInteractiveAuthentication = false;
-      UseDns = true;
-      X11Forwarding = false;
-      PermitRootLogin = "no";
-    };
-  };
-
-  # allow ssh port
-  networking.firewall.allowedTCPPorts = [22];
-
-  # ban evil
-  services.fail2ban = {
-    enable = true;
-    ignoreIP = [
-      # freyanet
-      "10.0.0.0/14"
-    ];
-  };
-
-  # add authorized keys
-  users.users.${config.user} = {
-    openssh.authorizedKeys.keyFiles = [
-      ../../files/keys/ssh.pub
-    ];
-  };
-}
-- 
cgit v1.2.3-freya