docs: deploy on a new machine

2026-01-11 22:30:25 +01:00 · 2024-02-01 00:29:49 +08:00
parent 3f505194b5
commit 1126e8c6a7
4 changed files with 30 additions and 12 deletions
--- a/secrets/README.md
+++ b/secrets/README.md
@@ -151,7 +151,7 @@ It will then symlink the secrets to the path defined by the `age.secrets.<name>.

 ## Adding a new host

-1. `cat` the public key of the new host, send it to an old host.
+1. `cat` the sytem-level public key(`/etc/ssh/ssh_host_ed25519_key`) of the new host, and send it to an old host which has already been configured.
 2. On the old host:
  1. Add the public key to `secrets.nix`, and rekey all the secrets via `sudo agenix -r -i /etc/ssh/ssh_host_ed25519_key`.
  2. Commit and push the changes to `nix-secrets`.