diff options
| author | Martin Fischer <martin@push-f.com> | 2025-03-20 21:13:10 +0100 |
|---|---|---|
| committer | Martin Fischer <martin@push-f.com> | 2025-03-20 21:13:10 +0100 |
| commit | dbc3621c794806b2a8badad292b909610108fc74 (patch) | |
| tree | 45989cf71935a1e80c5cf139c832858c31804d3a | |
| parent | 86322633835cf5970be8bd12c7d57899cbd49d28 (diff) | |
tweak(tente): enable fail2ban for SSH
| -rw-r--r-- | nixos/hosts/tente/default.nix | 3 |
1 files changed, 3 insertions, 0 deletions
diff --git a/nixos/hosts/tente/default.nix b/nixos/hosts/tente/default.nix index 72cd466..a2bf681 100644 --- a/nixos/hosts/tente/default.nix +++ b/nixos/hosts/tente/default.nix @@ -144,6 +144,9 @@ in ]; networking.firewall.allowedUDPPorts = []; + # comes with a pre-configured SSH jail + services.fail2ban.enable = true; + users.groups.www-data = {}; systemd.tmpfiles.rules = [ |