From 92cbf33aa09a0b68ef036a32cd5a67c32fd527e1 Mon Sep 17 00:00:00 2001
From: Daniel Langbein <daniel@systemli.org>
Date: Mon, 11 Sep 2023 13:06:20 +0200
Subject: [PATCH] update ssh config

---
 modules/nitrokey-ssh-gpg.nix | 13 +++++++++----
 1 file changed, 9 insertions(+), 4 deletions(-)

diff --git a/modules/nitrokey-ssh-gpg.nix b/modules/nitrokey-ssh-gpg.nix
index a0ef9a0..2e6e861 100644
--- a/modules/nitrokey-ssh-gpg.nix
+++ b/modules/nitrokey-ssh-gpg.nix
@@ -16,6 +16,8 @@
   # Restart gpg-agent after config change.
   # Otherwise there might be a gpg error about "no pinentry".
   # https://discourse.nixos.org/t/cant-get-gnupg-to-work-no-pinentry/15373/19
+  # But how to restart it? Maybe this?
+  # systemctl --user restart gpg-agent
 
   # Not sure if this is needed: Reload udev rules.
   # sudo -- udevadm control --reload-rules && udevadm trigger
@@ -51,7 +53,7 @@
   # systemctl --user stop gpg-agent-ssh.socket
   # ps -aux | grep -v grep | grep gpg-agent
   # => NONE
-  # eval $(gpg-agent --daemon --pinentry-program /nix/store/8cvidvpwnwyxixlhqfaa5jlfndh2vir5-pinentry-1.2.1-curses/bin/pinentry --enable-ssh-support --sh)
+  # eval $(gpg-agent --daemon --pinentry-program /nix/store/5j87jnmfh19xlq9ij0v3rh7cwssr4586-pinentry-1.2.1-curses/bin/pinentry --enable-ssh-support --sh)
   # echo $SSH_AUTH_SOCK
   #=> /run/user/1000/gnupg/S.gpg-agent.ssh
   # gpg -d ./passphrase.txt.gpg
@@ -102,9 +104,12 @@
           user = "yoda";
           port = 2222;
           compression = true;
-
-          #identityFile = "pubkey_nitrokey_ssh.pub";
-          #identitiesOnly = true;
+        };
+        "rootnas" = {
+          hostname = "p1st.de";
+          user = "root";
+          port = 2222;
+          compression = true;
         };
       };
     };