From 250ec5d3aabde3ad51bf42ee6547259ae6da6177 Mon Sep 17 00:00:00 2001 From: Tom Herbers Date: Wed, 27 Sep 2023 16:30:30 +0200 Subject: [PATCH] config: shell: add aliases for typical ssh, scp and sftp configurations --- configuration.nix | 15 +++++++++++++++ 1 file changed, 15 insertions(+) diff --git a/configuration.nix b/configuration.nix index 73115f6..97f26af 100644 --- a/configuration.nix +++ b/configuration.nix @@ -54,6 +54,21 @@ User root ''; + environment.shellAliases = { + ssh_force_password = "ssh -o PreferredAuthentications=password -o PubkeyAuthentication=no"; + scp_force_password = "scp -o PreferredAuthentications=password -o PubkeyAuthentication=no"; + sftp_force_password = "sftp -o PreferredAuthentications=password -o PubkeyAuthentication=no"; + ssh_stupid = "ssh -o StrictHostKeyChecking=no -o UserKnownHostsFile=/dev/null -o VerifyHostKeyDNS=no"; + scp_stupid = "scp -o StrictHostKeyChecking=no -o UserKnownHostsFile=/dev/null -o VerifyHostKeyDNS=no"; + ssh_rsa = "ssh -o 'HostKeyAlgorithms +ssh-rsa' -o 'PubkeyAcceptedKeyTypes +ssh-rsa'"; + scp_rsa = "scp -o 'HostKeyAlgorithms +ssh-rsa' -o 'PubkeyAcceptedKeyTypes +ssh-rsa'"; + ssh_rsa_stupid = "ssh -o 'HostKeyAlgorithms +ssh-rsa' -o 'PubkeyAcceptedKeyTypes +ssh-rsa' -o StrictHostKeyChecking=no -o UserKnownHostsFile=/dev/null -o VerifyHostKeyDNS=no"; + scp_rsa_stupid = "scp -o 'HostKeyAlgorithms +ssh-rsa' -o 'PubkeyAcceptedKeyTypes +ssh-rsa' -o StrictHostKeyChecking=no -o UserKnownHostsFile=/dev/null -o VerifyHostKeyDNS=no"; + ssh_old = "ssh -o 'KexAlgorithms diffie-hellman-group1-sha1' -o 'HostKeyAlgorithms +ssh-dss' -o 'Ciphers aes128-cbc,3des-cbc'"; + ssh_old_stupid = "ssh -o 'KexAlgorithms diffie-hellman-group1-sha1' -o 'HostKeyAlgorithms +ssh-dss' -o 'Ciphers aes128-cbc,3des-cbc' -o StrictHostKeyChecking=no -o UserKnownHostsFile=/dev/null -o VerifyHostKeyDNS=no"; + scp_old_stupid = "scp -o 'KexAlgorithms diffie-hellman-group1-sha1' -o 'HostKeyAlgorithms +ssh-dss' -o 'Ciphers aes128-cbc,3des-cbc' -o StrictHostKeyChecking=no -o UserKnownHostsFile=/dev/null -o VerifyHostKeyDNS=no"; + }; + systemd.network = { networks = { "99-default" = {