From f9adf3af97b7f4be5dcd314fa45138fc59cc1b7f Mon Sep 17 00:00:00 2001
From: tv <tv@krebsco.de>
Date: Tue, 5 Sep 2023 11:30:39 +0200
Subject: [PATCH] tv initrd/sshd: init

---
 tv/2configs/initrd/sshd.nix | 17 +++++++++++++++++
 1 file changed, 17 insertions(+)
 create mode 100644 tv/2configs/initrd/sshd.nix

diff --git a/tv/2configs/initrd/sshd.nix b/tv/2configs/initrd/sshd.nix
new file mode 100644
index 000000000..eff848074
--- /dev/null
+++ b/tv/2configs/initrd/sshd.nix
@@ -0,0 +1,17 @@
+{ config, ... }: {
+  boot.initrd.availableKernelModules = [
+    "e1000e"
+  ];
+  boot.initrd.network.enable = true;
+  boot.initrd.network.ssh = {
+    enable = true;
+    port = 11423;
+    authorizedKeys = [
+      config.krebs.users.tv.pubkey
+    ];
+    ignoreEmptyHostKeys = true;
+  };
+  boot.initrd.secrets = {
+    "/etc/ssh/ssh_host_rsa_key" = <secrets/initrd/ssh_host_rsa_key>;
+  };
+}