diff --git a/systems/common/optional/ssh_decrypt.nix b/systems/common/optional/ssh_decrypt.nix
new file mode 100644
index 0000000..28496cb
--- /dev/null
+++ b/systems/common/optional/ssh_decrypt.nix
@@ -0,0 +1,12 @@
+{ config, ... }:
+{
+  boot.initrd.network = {
+    enable = true;
+    ssh = {
+      enable = true;
+      port = 2222;
+      hostKeys = [ "/etc/ssh/initrd_ssh_host_ed25519_key" ];
+      authorizedKeys = config.users.users.richie.openssh.authorizedKeys.keys;
+    };
+  };
+}
diff --git a/systems/jeeves/default.nix b/systems/jeeves/default.nix
index 600a7c0..f38460e 100644
--- a/systems/jeeves/default.nix
+++ b/systems/jeeves/default.nix
@@ -6,6 +6,7 @@ in
   imports = [
     ../../users/richie
     ../common/global
+    ../common/optional/ssh_decrypt.nix
     ../common/optional/syncthing_base.nix
     ../common/optional/systemd-boot.nix
     ../common/optional/zerotier.nix