dotfiles.nix/nixos/common/global/ssh.nix

{...}: {
  services.openssh = {
    enable = true;
    settings = {
      PermitRootLogin = "no";
      PasswordAuthentication = false;
      LogLevel = "VERBOSE";
    };
    ports = [22];
    openFirewall = true;
  };

  services.rsyslogd = {
    enable = true;
    extraConfig = ''
      if $programname == 'sshd' then /var/log/sshd.log
    '';
  };
}
fmt: alejandra 2024-08-08 09:02:42 +08:00			`{...}: {`
refactor 2024-01-14 06:29:18 +08:00			`services.openssh = {`
			`enable = true;`
			`settings = {`
			`PermitRootLogin = "no";`
			`PasswordAuthentication = false;`
Setup ssh/promtail/loki for grafana ssh dashboard 2024-06-13 21:37:38 +08:00			`LogLevel = "VERBOSE";`
refactor 2024-01-14 06:29:18 +08:00			`};`
fmt: alejandra 2024-08-08 09:02:42 +08:00			`ports = [22];`
refactor 2024-01-14 06:29:18 +08:00			`openFirewall = true;`
			`};`
Setup ssh/promtail/loki for grafana ssh dashboard 2024-06-13 21:37:38 +08:00
			`services.rsyslogd = {`
			`enable = true;`
			`extraConfig = ''`
			`if $programname == 'sshd' then /var/log/sshd.log`
			`'';`
			`};`
refactor 2024-01-14 06:29:18 +08:00			`}`