From 30f3b04fb05414035399fd629802bac859391ec9 Mon Sep 17 00:00:00 2001 From: Emile Clark-Boman Date: Thu, 24 Jul 2025 13:38:33 +1000 Subject: [PATCH 1/2] Remove user friends@hyrule --- hosts/hyrule/default.nix | 13 ++----------- 1 file changed, 2 insertions(+), 11 deletions(-) diff --git a/hosts/hyrule/default.nix b/hosts/hyrule/default.nix index e8fcd7a..6fc1993 100755 --- a/hosts/hyrule/default.nix +++ b/hosts/hyrule/default.nix @@ -102,15 +102,6 @@ in { wishlist ]; }; - - # user for friends to ssh into - friends = { - isNormalUser = true; - shell = pkgs.bash; - home = "/home/friends"; # TEMP: remove and replace with home-manager - packages = with pkgs; [ - ]; - }; }; }; @@ -196,9 +187,9 @@ in { enable = true; ports = [22]; settings = { - PasswordAuthentication = true; + PasswordAuthentication = false; PermitRootLogin = "no"; - AllowUsers = ["ae" "subspace"]; # allow all users by default + AllowUsers = ["ae" "subspace"]; # DO NOT ALLOW ALL UseDns = true; X11Forwarding = false; }; From 2cbf2f83a49754486ddf4992d739061eaf278154 Mon Sep 17 00:00:00 2001 From: Emile Clark-Boman Date: Thu, 24 Jul 2025 13:40:32 +1000 Subject: [PATCH 2/2] Subspace uses nixpkgs.wishlist not my fork --- hosts/hyrule/default.nix | 9 ++------- 1 file changed, 2 insertions(+), 7 deletions(-) diff --git a/hosts/hyrule/default.nix b/hosts/hyrule/default.nix index 6fc1993..3cc73c2 100755 --- a/hosts/hyrule/default.nix +++ b/hosts/hyrule/default.nix @@ -12,7 +12,6 @@ in { imports = [ ./hardware-configuration.nix (import "${home-manager}/nixos") - #../../flakes/wishlist/wishlist.nix #../modules/server/nginx.nix #../modules/server/ssh.nix #../modules/server/fail2ban.nix @@ -89,12 +88,8 @@ in { ]; }; - subspace = let - # override - wishlistBash = - pkgs.bash.override { - }; - in { + # TODO: reduce security implications of subspace + subspace = { isNormalUser = true; shell = pkgs.bash; home = "/home/subspace";