jet/extremist-software
jet/extremist-software
1
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

fix: rate limits, fail2ban, readme, secret scheme

Browse source
This commit is contained in:
Jet Pham 2026-03-04 16:32:53 -08:00
parent ad8cb52169
commit bb20443241
No known key found for this signature in database
4 changed files with 96 additions and 9 deletions
Download patch file Download diff file Expand all files Collapse all files

21
configuration.nix
View file

@ -46,12 +46,31 @@
settings.PermitRootLogin = "prohibit-password";
};
# Fail2ban
services.fail2ban = {
enable = true;
maxretry = 5;
bantime = "1h";
bantime-increment = {
enable = true;
maxtime = "168h";
overalljails = true;
};
ignoreIP = [
"100.64.0.0/10"
"127.0.0.0/8"
];
jails.sshd.settings = {
backend = "systemd";
maxretry = 3;
};
};
# nh (yet another nix helper)
programs.nh = {
enable = true;
clean.enable = true;
clean.extraArgs = "--keep 2";
flake = "/home/jet/Documents/extremist-software";
};
# System