diff --git a/hosts/cube/id.age b/hosts/cube/id.age
new file mode 100644
index 0000000..41ad662
Binary files /dev/null and b/hosts/cube/id.age differ
diff --git a/hosts/disk/default.nix b/hosts/disk/default.nix
index 57fe5b7..4ea008a 100644
--- a/hosts/disk/default.nix
+++ b/hosts/disk/default.nix
@@ -16,6 +16,12 @@
       openssh.authorizedKeys.keys = [ keys.enka ];
       hashedPasswordFile          = config.secrets.floppyPassword.path;
     };
+
+    backup = normalUser {
+      description                 = "Backup";
+      openssh.authorizedKeys.keys = [ keys.cube keys.enka ];
+      hashedPasswordFile          = config.secrets.floppyPassword.path;
+    };
   };
 
   networking = {
diff --git a/hosts/disk/id.age b/hosts/disk/id.age
new file mode 100644
index 0000000..b897864
Binary files /dev/null and b/hosts/disk/id.age differ
diff --git a/modules/ssh.nix b/modules/ssh.nix
index ed3c166..cf6697d 100644
--- a/modules/ssh.nix
+++ b/modules/ssh.nix
@@ -4,7 +4,7 @@
   mosh
 ]))
 
-(desktopHomeConfiguration {
+(homeConfiguration {
   programs.ssh = enabled {
     controlMaster       = "auto";
     controlPersist      = "60m";
diff --git a/secrets.nix b/secrets.nix
index da6ee0d..0470f39 100644
--- a/secrets.nix
+++ b/secrets.nix
@@ -2,7 +2,8 @@ let
   keys = import ./keys.nix;
 in with keys; {
   ### cube
-  "hosts/cube/password.rgb.age".publicKeys       = [ cube enka ];
+  "hosts/cube/id.age".publicKeys           = [ cube enka ];
+  "hosts/cube/password.rgb.age".publicKeys = [ cube enka ];
 
   "hosts/cube/password.plain.mail.age".publicKeys = [ cube enka ];
   "hosts/cube/password.hash.mail.age".publicKeys  = [ cube enka ];
@@ -17,7 +18,7 @@ in with keys; {
   "hosts/cube/nextcloud/password.age".publicKeys  = [ cube enka ];
 
   ### disk
-
+  "hosts/disk/id.age".publicKeys              = [ cube enka ];
   "hosts/disk/password.floppy.age".publicKeys = [ disk enka ];
 
   ### enka