Hello, Yes, feel free to take the register-user-SSH-keys task! :-)
Mark Meyer <[email protected]> skribis: >>>>>> "ng0" == ng0 <[email protected]> writes: > ng0> It would be very welcome. This is currently one of two blocking > ng0> features I need until I can introduce GuixSD to IN-Berlin > ng0> e.V. (among other services they run virtual servers as a > ng0> non-profit). > > Concerning the OpenSSH configuration, if we don't want to create files > in $HOME, it's possible to pass multiple AuthorizedKeysFile directives > to the server, so this might be: > > AuthorizedKeysFile %h/.ssh/authorized_keys /etc/ssh/%u/authorized_keys > > So that guix would control /etc/ssh/%u and you can alternatively add you > own keys to $HOME/.ssh/authorized_keys. So the default value for ‘AuthorizedKeysFile’ does not include /etc/ssh/%u, right? In that case, we don’t even need to add an entry to /etc and can directly add something like: /gnu/store/…-sshd-authorized-keys to the config file. Ludo’.
