From 988b9b8a58ab4164341e0621369538b88340334b Mon Sep 17 00:00:00 2001
From: Shahab Dogar <shahab.dogar@blueocean.ai>
Date: Sun, 9 Feb 2025 18:11:18 +0500
Subject: [PATCH] chore: NixOS | remove yubico stuff + enable ssh + ufw

---
 nixos/configuration.nix | 19 ++-----------------
 1 file changed, 2 insertions(+), 17 deletions(-)

diff --git a/nixos/configuration.nix b/nixos/configuration.nix
index 8acae9b..bb3e01a 100644
--- a/nixos/configuration.nix
+++ b/nixos/configuration.nix
@@ -92,15 +92,6 @@ in {
     pulse.enable = true;
   };
 
-  services.udev.extraRules = ''
-    ACTION=="remove",\
-    ENV{ID_BUS}=="usb",\
-    ENV{ID_MODEL_ID}=="0407",\
-    ENV{ID_VENDOR_ID}=="1050",\
-    ENV{ID_VENDOR}=="Yubico",\
-    RUN+="${pkgs.systemd}/bin/loginctl lock-sessions"
-  '';
-
   hardware = {
     # Bluetooth.
     bluetooth.enable = true;
@@ -114,12 +105,6 @@ in {
 
   security.rtkit.enable = true;
 
-  security.pam.yubico = {
-    enable = true;
-    mode = "challenge-response";
-    id = ["24353659"];
-  };
-
   users.users.shahab = {
     shell = pkgs.zsh;
 
@@ -255,10 +240,10 @@ in {
   # List services that you want to enable:
 
   # Enable the OpenSSH daemon.
-  # services.openssh.enable = true;
+  services.openssh.enable = true;
 
   # Open ports in the firewall.
-  # networking.firewall.allowedTCPPorts = [ ... ];
+  networking.firewall.allowedTCPPorts = [22];
   # networking.firewall.allowedUDPPorts = [ ... ];
   # Or disable the firewall altogether.
   # networking.firewall.enable = false;