diff --git a/modules/base/ssh.nix b/modules/base/ssh.nix
index 9616bc2..70d332e 100644
--- a/modules/base/ssh.nix
+++ b/modules/base/ssh.nix
@@ -7,25 +7,24 @@
     settings = {
       PasswordAuthentication = false;
       PermitRootLogin = "prohibit-password";
+      Ciphers = [
+        "chacha20-poly1305@openssh.com"
+        "aes256-gcm@openssh.com"
+        "aes256-ctr"
+        "aes128-gcm@openssh.com"
+      ];
+      Macs = [
+        "umac-128-etm@openssh.com"
+        "hmac-sha2-256-etm@openssh.com"
+        "hmac-sha2-512-etm@openssh.com"
+        "hmac-sha2-512"
+      ];
+      KexAlgorithms = [
+        "curve25519-sha256@libssh.org"
+        "diffie-hellman-group16-sha512"
+        "diffie-hellman-group18-sha512"
+        "curve25519-sha256"
+      ];
     };
-
-    ciphers = [
-      "chacha20-poly1305@openssh.com"
-      "aes256-gcm@openssh.com"
-      "aes256-ctr"
-      "aes128-gcm@openssh.com"
-    ];
-    macs = [
-      "umac-128-etm@openssh.com"
-      "hmac-sha2-256-etm@openssh.com"
-      "hmac-sha2-512-etm@openssh.com"
-      "hmac-sha2-512"
-    ];
-    kexAlgorithms = [
-      "curve25519-sha256@libssh.org"
-      "diffie-hellman-group16-sha512"
-      "diffie-hellman-group18-sha512"
-      "curve25519-sha256"
-    ];
   };
 }