diff options
| -rw-r--r-- | system-profiles/openssh/default.nix | 3 |
1 files changed, 3 insertions, 0 deletions
diff --git a/system-profiles/openssh/default.nix b/system-profiles/openssh/default.nix index 464f6b0f..98f75b94 100644 --- a/system-profiles/openssh/default.nix +++ b/system-profiles/openssh/default.nix | |||
| @@ -18,6 +18,9 @@ | |||
| 18 | macs = [ "hmac-sha2-256-etm@openssh.com" "hmac-sha2-256" "hmac-sha2-512-etm@openssh.com" "hmac-sha2-512" ]; | 18 | macs = [ "hmac-sha2-256-etm@openssh.com" "hmac-sha2-256" "hmac-sha2-512-etm@openssh.com" "hmac-sha2-512" ]; |
| 19 | kexAlgorithms = [ "curve25519-sha256@libssh.org" "diffie-hellman-group-exchange-sha256" ]; | 19 | kexAlgorithms = [ "curve25519-sha256@libssh.org" "diffie-hellman-group-exchange-sha256" ]; |
| 20 | moduliFile = config.sops.secrets.ssh_moduli.path; | 20 | moduliFile = config.sops.secrets.ssh_moduli.path; |
| 21 | extraConfig = '' | ||
| 22 | HostKeyAlgorithms sk-ssh-ed25519-cert-v01@openssh.com,ssh-ed25519-cert-v01@openssh.com,rsa-sha2-256-cert-v01@openssh.com,rsa-sha2-512-cert-v01@openssh.com,sk-ssh-ed25519@openssh.com,ssh-ed25519,rsa-sha2-256,rsa-sha2-512 | ||
| 23 | ''; | ||
| 21 | }; | 24 | }; |
| 22 | 25 | ||
| 23 | programs.ssh = { | 26 | programs.ssh = { |