From c12c26730f5be240844684cfeff6b9e8b1c7348b Mon Sep 17 00:00:00 2001 From: Gregor Kleen Date: Mon, 20 Mar 2023 12:27:50 +0100 Subject: ... --- system-profiles/openssh/default.nix | 10 +++++----- 1 file changed, 5 insertions(+), 5 deletions(-) (limited to 'system-profiles') diff --git a/system-profiles/openssh/default.nix b/system-profiles/openssh/default.nix index f81880cc..0e88ffb7 100644 --- a/system-profiles/openssh/default.nix +++ b/system-profiles/openssh/default.nix @@ -75,11 +75,11 @@ in { KbdInteractiveAuthentication = mkDefault false; }; moduliFile = mkIf (config.sops.secrets ? "ssh_moduli") "/run/credentials/sshd.service/ssh_moduli"; - extraConfig = '' - ${optionalString cfg.staticHostKeys "HostKey /run/credentials/sshd.service/ssh_host_ed25519_key"} - ${optionalString cfg.staticHostKeys "HostCertificate ${./known-hosts + "/${hostName}/ed25519.pub"}"} - ${optionalString cfg.staticHostKeys "HostKey /run/credentials/sshd.service/ssh_host_rsa_key"} - ${optionalString cfg.staticHostKeys "HostCertificate ${./known-hosts + "/${hostName}/rsa-cert.pub"}"} + extraConfig = optionalString cfg.staticHostKeys '' + HostKey /run/credentials/sshd.service/ssh_host_ed25519_key + HostCertificate ${./known-hosts + "/${hostName}/ed25519.pub"} + HostKey /run/credentials/sshd.service/ssh_host_rsa_key + HostCertificate ${./known-hosts + "/${hostName}/rsa-cert.pub"} ''; }; -- cgit v1.2.3