diff --git a/modules/shared/sops/default.nix b/modules/shared/sops/default.nix
index 060e687..b066b15 100755
--- a/modules/shared/sops/default.nix
+++ b/modules/shared/sops/default.nix
@@ -17,7 +17,6 @@ in {
   sops.secrets = lib.mkMerge [
   {
     wifi = { };
-
     "${config.syscfg.hostname}_ssh_priv" = {
       mode = "0400";
       owner = config.users.users.${config.syscfg.defaultUser}.name;
@@ -35,5 +34,9 @@ in {
     (map (peer: "${peer}_wg_pub") config.syscfg.net.wg.server.peers)
     (_: { mode = "0400"; })
   )
+  (lib.genAttrs 
+    (map (peer: "${peer}_ssh_pub") ["iriy" "avalon" "asguard"])
+    (_: { mode = "0444"; })
+  )
 ];
 }