From 800286a7f20182778c6fafa37a8750dfe3a9f945 Mon Sep 17 00:00:00 2001
From: blahai <github@blahai.gay>
Date: Mon, 27 Jan 2025 14:24:45 +0200
Subject: [PATCH] Networking: add openssh

---
 modules/nixos/networking/default.nix |  1 +
 modules/nixos/networking/ssh.nix     | 15 +++++++++++++++
 2 files changed, 16 insertions(+)
 create mode 100644 modules/nixos/networking/ssh.nix

diff --git a/modules/nixos/networking/default.nix b/modules/nixos/networking/default.nix
index dfe53b3..95dcc69 100644
--- a/modules/nixos/networking/default.nix
+++ b/modules/nixos/networking/default.nix
@@ -8,6 +8,7 @@ in {
   imports = [
     ./firewall
 
+    ./ssh.nix
     ./tailscale.nix
   ];
 
diff --git a/modules/nixos/networking/ssh.nix b/modules/nixos/networking/ssh.nix
new file mode 100644
index 0000000..918994f
--- /dev/null
+++ b/modules/nixos/networking/ssh.nix
@@ -0,0 +1,15 @@
+{...}: {
+  services.openssh = {
+    enable = true;
+    startWhenNeeded = true;
+    settings = {
+      PermitRootLogin = "no";
+      PasswordAuthentication = false;
+
+      ClientAliveCountMax = 5;
+      ClientAliveInterval = 60;
+    };
+    openFirewall = true;
+    ports = [22];
+  };
+}