hektor/nix
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

feat: add 'fail2ban' to 'hecuba' host

Browse Source
This commit is contained in:
Hektor Misplon
2025-12-09 23:10:24 +01:00
parent 098bbbb5d2
commit ce732af957
1 changed files with 10 additions and 5 deletions
Download Patch File Download Diff File Expand all files Collapse all files

15
hosts/hecuba/default.nix
View File

@@ -9,11 +9,6 @@
../../modules/ssh/hardened-openssh.nix ../../modules/ssh/hardened-openssh.nix
]; ];
environment.systemPackages = with pkgs; [
vim
git
];
fileSystems."/" = { fileSystems."/" = {
device = "/dev/disk/by-label/nixos"; device = "/dev/disk/by-label/nixos";
fsType = "ext4"; fsType = "ext4";
@@ -48,6 +43,16 @@
firewall.enable = true; firewall.enable = true;
}; };
environment.systemPackages = with pkgs; [
vim
git
];
services.fail2ban = {
enable = true;
maxretry = 5;
};
services.openssh = { services.openssh = {
enable = true; enable = true;
harden = true; harden = true;