foodogsquared/nixos-config
1
0
Fork 0
mirror of https://github.com/foo-dogsquared/nixos-config.git synced 2025-04-24 12:19:12 +00:00
Code Issues Actions 1 Packages Projects Releases Wiki Activity

hosts/plover: enable DH params generation

Browse Source 
This is for certain applications as we'll see.
This commit is contained in:
Gabriel Arazas 2023-06-30 10:46:43 +08:00
parent 53f7cf6e83
commit 831022bf22
No known key found for this signature in database
GPG Key ID: ADE0C41DAB221FCC
1 changed files with 4 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
hosts/plover/default.nix
View File

@ -126,6 +126,10 @@ in
credentialsFile = config.sops.secrets."plover/lego/env".path; credentialsFile = config.sops.secrets."plover/lego/env".path;
}; };
# Enable generating new DH params.
security.dhparams.enable = true;
# !!! The keys should be rotated at an interval here.
services.openssh.hostKeys = [{ services.openssh.hostKeys = [{
path = config.sops.secrets."plover/ssh-key".path; path = config.sops.secrets."plover/ssh-key".path;
type = "ed25519"; type = "ed25519";