From 9808188cc868a741d9710f2b075ada46d8f8c89d Mon Sep 17 00:00:00 2001 From: tzlil Date: Tue, 13 Dec 2022 15:57:58 +0200 Subject: started adding known hosts --- profiles/network.nix | 30 +++++++++++++++--------------- profiles/user.nix | 6 ++++++ 2 files changed, 21 insertions(+), 15 deletions(-) diff --git a/profiles/network.nix b/profiles/network.nix index 8e6a83d..ad1dc5c 100644 --- a/profiles/network.nix +++ b/profiles/network.nix @@ -17,23 +17,23 @@ }; services.dnscrypt-proxy2 = { - enable = true; - settings = { - ipv6_servers = true; - require_dnssec = true; + enable = true; + settings = { + ipv6_servers = true; + require_dnssec = true; - sources.public-resolvers = { - urls = [ - "https://raw.githubusercontent.com/DNSCrypt/dnscrypt-resolvers/master/v3/public-resolvers.md" - "https://download.dnscrypt.info/resolvers-list/v3/public-resolvers.md" - ]; - cache_file = "/var/lib/dnscrypt-proxy2/public-resolvers.md"; - minisign_key = "RWQf6LRCGA9i53mlYecO4IzT51TGPpvWucNSCh1CBM0QTaLn73Y7GFO3"; - }; + sources.public-resolvers = { + urls = [ + "https://raw.githubusercontent.com/DNSCrypt/dnscrypt-resolvers/master/v3/public-resolvers.md" + "https://download.dnscrypt.info/resolvers-list/v3/public-resolvers.md" + ]; + cache_file = "/var/lib/dnscrypt-proxy2/public-resolvers.md"; + minisign_key = "RWQf6LRCGA9i53mlYecO4IzT51TGPpvWucNSCh1CBM0QTaLn73Y7GFO3"; + }; - # You can choose a specific set of servers from https://github.com/DNSCrypt/dnscrypt-resolvers/blob/master/v3/public-resolvers.md - # server_names = [ ... ]; - }; + # You can choose a specific set of servers from https://github.com/DNSCrypt/dnscrypt-resolvers/blob/master/v3/public-resolvers.md + # server_names = [ ... ]; + }; }; systemd.services.dnscrypt-proxy2.serviceConfig = { diff --git a/profiles/user.nix b/profiles/user.nix index 3df7c18..71c6617 100644 --- a/profiles/user.nix +++ b/profiles/user.nix @@ -45,6 +45,12 @@ }; programs.ssh = { enable = true; + knownHosts = { + pc = { + extraHostNames = [ "100.99.246.128" ]; + publicKey = "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAINu5lRKb1Ao4uj1tAV10QHKIvXfC8ncQ65b+oJtxrd1e"; + }; + }; matchBlocks."*".identityFile = config.age.secrets."id_ed25519".path; }; }; -- cgit 1.4.1