refactor(ssh): system-level ssh known_hosts & ssh config

modules/base.nix

@@ -85,6 +85,8 @@
     openssh.authorizedKeys.keys = myvars.mainSshAuthorizedKeys;
   };
 
+  programs.ssh = myvars.networking.ssh;
+
   nix.settings = {
     # enable flakes globally
     experimental-features = ["nix-command" "flakes"];

modules/darwin/ssh.nix

@@ -1,5 +1,3 @@
-{myvars, ...}: {
+{
   services.openssh.enable = false;
-
-  programs.ssh = myvars.networking.ssh;
 }

modules/nixos/base/ssh.nix

@@ -1,15 +1,8 @@
-{
+{lib, ...}: {
-  lib,
-  myvars,
-  ...
-}: {
   # networking.firewall.allowedTCPPorts = [ ... ];
   # networking.firewall.allowedUDPPorts = [ ... ];
   # Or disable the firewall altogether.
   networking.firewall.enable = lib.mkDefault false;
-
-  programs.ssh = myvars.networking.ssh;
-
   # Enable the OpenSSH daemon.
   services.openssh = {
     enable = true;