From c596e2b77dc339987108e0dcdc8d6926e0c86b1d Mon Sep 17 00:00:00 2001
From: Sebastian Moser <me@c2vi.dev>
Date: Wed, 1 Nov 2023 13:23:40 +0100
Subject: [PATCH] setup ssh on hpm

---
 hosts/hpm.nix    | 29 ++++++++++++++++++++++++++++-
 programs/ssh.nix |  5 +++--
 2 files changed, 31 insertions(+), 3 deletions(-)

diff --git a/hosts/hpm.nix b/hosts/hpm.nix
index 2c5dbf4..dc59975 100644
--- a/hosts/hpm.nix
+++ b/hosts/hpm.nix
@@ -8,6 +8,33 @@
 		../users/me/default.nix
 	];
 
-	networking.hostName = "hpm";
+	services.openssh = {
+  		enable = true;
+  		# require public key authentication for better security
+  		settings.PasswordAuthentication = false;
+  		settings.KbdInteractiveAuthentication = false;
+  		settings.PermitRootLogin = "yes";
+	};
+
+	users.users.me.openssh.authorizedKeys.keys = [
+		"ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIFjgXf9S9hxjyph2EEFh1el0z4OUT9fMoFAaDanjiuKa me@main"
+	];
+
+	networking = {
+		defaultGateway = {
+			address = "192.168.1.1";
+			interface = "enp0s13f0u1c2";
+		};
+		hostName = "hpm";
+		nameservers = [ "1.1.1.1" "8.8.8.8" ];
+		interfaces = {
+			"enp0s13f0u1c2" = {
+				name = "eth0";
+				ipv4.addresses = [
+					{ address = "192.168.1.6"; prefixLength = 24;}
+				];
+			};
+		};
+	};
 }
 
diff --git a/programs/ssh.nix b/programs/ssh.nix
index c6c3d56..7192aaf 100644
--- a/programs/ssh.nix
+++ b/programs/ssh.nix
@@ -9,8 +9,9 @@
 				identityFile = "${secretsDir}/private-key-main";
 			};
 			hpm = {
-				hostname = "192.168.1.56";
-				user = "root";
+				hostname = "192.168.1.6";
+				user = "me";
+				identityFile = "${secretsDir}/private-key-main";
 			};
 
 			servers = {