diff --git a/hosts/bengal/configuration.nix b/hosts/bengal/configuration.nix
index f731df4..1501455 100644
--- a/hosts/bengal/configuration.nix
+++ b/hosts/bengal/configuration.nix
@@ -3,7 +3,7 @@
     ./hardware-configuration.nix
   ];
 
-  cherrykitten.graphical.enable = true;
+  cherrykitten.graphical = true;
 
   boot.loader.systemd-boot.enable = true;
 
diff --git a/modules/home/default.nix b/modules/home/default.nix
index 0a8da62..a477f95 100644
--- a/modules/home/default.nix
+++ b/modules/home/default.nix
@@ -6,5 +6,6 @@
     ./starship.nix
     ./git.nix
     ./foot.nix
+    ./ssh.nix
   ];
 }
diff --git a/modules/home/ssh.nix b/modules/home/ssh.nix
new file mode 100644
index 0000000..9a3a478
--- /dev/null
+++ b/modules/home/ssh.nix
@@ -0,0 +1,63 @@
+{ ... }: {
+
+  programs.ssh = {
+    enable = true;
+    matchBlocks = {
+      eevee = {
+        host = "eevee ee.vee";
+        hostname = "192.168.0.3";
+        user = "root";
+        identityFile = "~/.ssh/yubikey.pub";
+        identitiesOnly = true;
+      };
+
+      "social.cherrykitten.dev" = {
+        host = "social social.cherrykitten.dev";
+        hostname = "social.cherrykitten.dev";
+        user = "sammy";
+        identityFile = "~/.ssh/yubikey.pub";
+        identitiesOnly = true;
+      };
+
+      "git.cherrykitten.dev" = {
+        host = "git.cherrykitten.dev";
+        user = "git";
+        identityFile = "~/.ssh/yubikey.pub";
+        identitiesOnly = true;
+      };
+
+      "maine-coon" = {
+        host = "maine-coon";
+        hostname = "159.69.71.253";
+        identityFile = "~/.ssh/yubikey.pub";
+        identitiesOnly = true;
+        remoteForwards = [
+          {
+            bind.address = "/run/user/1000/gnupg/S.gpg-agent";
+            host.address = "/run/user/1000/gnupg/S.gpg-agent.extra";
+          }
+        ];
+      };
+
+      "chat.cherrykitten.dev" = {
+        host = "chat.cherrykitten.dev chat";
+        hostname = "chat.cherrykitten.dev";
+        user = "root";
+        identityFile = "~/.ssh/yubikey.pub";
+        identitiesOnly = true;
+      };
+
+      github = {
+        host = "gh github github.com";
+        user = "git";
+        identityFile = [ "~/.ssh/yubikey.pub" "~/.ssh/yubikey_work.pub" ];
+        identitiesOnly = true;
+      };
+    };
+  };
+
+  home.file = {
+    ".ssh/yubikey.pub".text = "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIJZyQSZw+pExsx2RXB+yxbaJGB9mtvudbQ/BP7E1yKvr openpgp:0x6068FEBB";
+    ".ssh/yubikey_work.pub".text = "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIOtNy5xYn2i1sXnjFmeYu1B87d2JLXcFEGUnmjbi557L openpgp:0x1E9BE982";
+  };
+}