tailscale

author: Fuwn <[email protected]> 2024-09-03 18:02:42 -0700
committer: Fuwn <[email protected]> 2024-09-03 18:02:42 -0700
commit: a59aebb4834262c549a4260d0164ae1c9f895384 (patch)
tree: ba57cc8bb6df045829165fc2833f400fec95969e /modules/services
parent: harden ssh (diff)
download: nixos-config-a59aebb4834262c549a4260d0164ae1c9f895384.tar.xz
nixos-config-a59aebb4834262c549a4260d0164ae1c9f895384.zip
2 files changed, 3 insertions, 5 deletions
diff --git a/modules/services/default.nix b/modules/services/default.nix
index 7c881c1..adc5d0b 100644
--- a/modules/services/default.nix
+++ b/modules/services/default.nix
@@ -26,5 +26,6 @@
     chrony.enable = false;
     timesyncd.enable = true;
     irqbalance.enable = true;
+    tailscale.enable = true;
   };
 }
diff --git a/modules/services/openssh.nix b/modules/services/openssh.nix
index b16ca8a..8bab2a4 100644
--- a/modules/services/openssh.nix
+++ b/modules/services/openssh.nix
@@ -1,13 +1,10 @@
 {
   services.openssh = {
     enable = true;
-    ports = [ 2222 ];
-    openFirewall = true;
+    ports = [ 22 ];
+    openFirewall = false;
 
     settings = {
-      PermitRootLogin = "no";
-      MaxAuthTries = 3;
-
       KexAlgorithms = [
         "curve25519-sha256"
         "[email protected]"
author	Fuwn <[email protected]>	2024-09-03 18:02:42 -0700
committer	Fuwn <[email protected]>	2024-09-03 18:02:42 -0700
commit	a59aebb4834262c549a4260d0164ae1c9f895384 (patch)
tree	ba57cc8bb6df045829165fc2833f400fec95969e /modules/services
parent	harden ssh (diff)
download	nixos-config-a59aebb4834262c549a4260d0164ae1c9f895384.tar.xz nixos-config-a59aebb4834262c549a4260d0164ae1c9f895384.zip