From 55a252b63274543d2d12bbc0be1ae2860a9d055e Mon Sep 17 00:00:00 2001
From: Ranomier <>
Date: Thu, 8 May 2025 23:44:32 +0200
Subject: [PATCH] feat: added ssh-server

---
 modules/sec_auth/default.nix                 |  3 ++-
 modules/sec_auth/{ssh.nix => ssh-client.nix} |  0
 modules/sec_auth/ssh-server.nix              | 13 +++++++++++++
 3 files changed, 15 insertions(+), 1 deletion(-)
 rename modules/sec_auth/{ssh.nix => ssh-client.nix} (100%)
 create mode 100644 modules/sec_auth/ssh-server.nix

diff --git a/modules/sec_auth/default.nix b/modules/sec_auth/default.nix
index 2bfd404..110b2ab 100644
--- a/modules/sec_auth/default.nix
+++ b/modules/sec_auth/default.nix
@@ -3,6 +3,7 @@
     ./apparmor.nix
     ./firejail.nix
     ./login-manager.nix
-    ./ssh.nix
+    ./ssh-client.nix
+    #./ssh-server.nix
   ];
 }
diff --git a/modules/sec_auth/ssh.nix b/modules/sec_auth/ssh-client.nix
similarity index 100%
rename from modules/sec_auth/ssh.nix
rename to modules/sec_auth/ssh-client.nix
diff --git a/modules/sec_auth/ssh-server.nix b/modules/sec_auth/ssh-server.nix
new file mode 100644
index 0000000..b3b5c8b
--- /dev/null
+++ b/modules/sec_auth/ssh-server.nix
@@ -0,0 +1,13 @@
+{lib, ...}: {
+  services.openssh = {
+    enable = true;
+
+    ports = lib.mkDefault [38742];
+
+    settings = {
+      PasswordAuthentication = false;
+      PermitRootLogin = "yes";
+      X11Forwarding = true;
+    };
+  };
+}