server/ssh: init base server config

2 files changed, 38 insertions, 0 deletions

diff --git a/modules/server/default.nix b/modules/server/default.nix
new file mode 100644
index 00000000000..cb5183bbc32
--- /dev/null
+++ b/modules/server/default.nix
@@ -0,0 +1,19 @@
+/* GENERAL SERVER CONFIGURATION
+ *
+ * A server is a computer, that runs headless on a network, performing
+ * various tasks, such as providing network services. It has a
+ * barebones set of tools installed to interact with it's
+ * configuration, and is otherwise pure infrastructure.
+ *
+ * Root access is generally assumed while rebuilding a server
+ * system. Although some machines might have specific tools that come
+ * from `base`, these are not important here.
+ */
+
+{ ... }:
+
+{
+  imports = [
+    ./ssh
+  ];
+}
diff --git a/modules/server/ssh/default.nix b/modules/server/ssh/default.nix
new file mode 100644
index 00000000000..9fcdd9fe5cf
--- /dev/null
+++ b/modules/server/ssh/default.nix
@@ -0,0 +1,19 @@
+/* SSH SERVER DEFINITIONS
+ *
+ * This function sets up ssh and mosh, as well as
+ * access via SSH to specific users defined in libkookie
+ * `modules/users/`
+ */
+
+{ config, ... }:
+
+{
+  programs.mosh.enable = true;
+  services.openssh = {
+    enable = true;
+    passwordAuthentication = false;
+
+    # This setting is important for emacs TRAMP paths
+    permitRootLogin = "yes";
+  };
+}