From 587ea99786e439575e660817c81f6a8aa142859a Mon Sep 17 00:00:00 2001
From: Henry-Hiles <henry@henryhiles.com>
Date: Tue, 25 Mar 2025 17:23:36 -0400
Subject: [PATCH] Change ssh port

---
 clients/quadraticserver/caddy.nix   | 2 +-
 clients/quadraticserver/forgejo.nix | 1 +
 modules/server/ssh.nix              | 2 +-
 3 files changed, 3 insertions(+), 2 deletions(-)

diff --git a/clients/quadraticserver/caddy.nix b/clients/quadraticserver/caddy.nix
index 1c53fc6..4d11bd3 100644
--- a/clients/quadraticserver/caddy.nix
+++ b/clients/quadraticserver/caddy.nix
@@ -3,5 +3,5 @@
     enable = true;
     email = "henry@henryhiles.com";
   };
-  networking.firewall.allowedTCPPorts = [80 443];
+  networking.firewall.allowedTCPPorts = [2200 443];
 }
diff --git a/clients/quadraticserver/forgejo.nix b/clients/quadraticserver/forgejo.nix
index b8c0152..0dbc134 100644
--- a/clients/quadraticserver/forgejo.nix
+++ b/clients/quadraticserver/forgejo.nix
@@ -19,6 +19,7 @@
           ROOT_URL = "https://${domain}";
           HTTP_ADDR = socket;
           PROTOCOL = "http+unix";
+          SSH_LISTEN_PORT = 2200;
         };
       };
     };
diff --git a/modules/server/ssh.nix b/modules/server/ssh.nix
index 1c3c971..577e782 100644
--- a/modules/server/ssh.nix
+++ b/modules/server/ssh.nix
@@ -3,7 +3,7 @@
   services.openssh = {
     enable = true;
     settings = {
-      PasswordAuthentication = true; # TODO: False
+      PasswordAuthentication = false;
       AllowUsers = ["quadradical"];
       PermitRootLogin = "no";
     };