From 46b5006fec817effeb6a0e0429afb89fbc6e2ae0 Mon Sep 17 00:00:00 2001 From: Aleksandr Lebedev Date: Sat, 25 Apr 2026 14:02:27 +0200 Subject: [PATCH] ssh --- modules/nixos/users/kylekrein/default.nix | 4 +--- systems/x86_64-linux/stargate/services/fail2ban.nix | 2 +- 2 files changed, 2 insertions(+), 4 deletions(-) diff --git a/modules/nixos/users/kylekrein/default.nix b/modules/nixos/users/kylekrein/default.nix index 2531cc2..eba062e 100644 --- a/modules/nixos/users/kylekrein/default.nix +++ b/modules/nixos/users/kylekrein/default.nix @@ -17,9 +17,7 @@ with lib.${namespace}; let admin = true; extraGroups = ["networkmanager" "touchscreen"]; trustedSshKeys = [ - "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIFDdxZ5OyGcfD1JwEa4RWw86HWZ2dKFR0syrRckl7EvG kylekrein@kylekrein-homepc" - "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIAWDM28XBxm4PFBNOouNWxqVmDj1ulUGEgHsRYoODCDG anaconda" - "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAINYO1JV6qkQM+EW2WY/RxDFihgSKuFHF1hVtzl+F9ye4 kylekrein@anaconda" + "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIF1gj+j+09T8n2HjpBod13WGroWn1cLmNUDmQfGVZllM kylekrein@fleetcarrier" ]; cfg = config.${namespace}.users.${username}; diff --git a/systems/x86_64-linux/stargate/services/fail2ban.nix b/systems/x86_64-linux/stargate/services/fail2ban.nix index 3f98006..57ea5de 100644 --- a/systems/x86_64-linux/stargate/services/fail2ban.nix +++ b/systems/x86_64-linux/stargate/services/fail2ban.nix @@ -8,7 +8,7 @@ "fail2ban/action.d/ntfy.local".text = pkgs.lib.mkDefault (pkgs.lib.mkAfter '' [Definition] norestored = true # Needed to avoid receiving a new notification after every restart - #actionban = ${pkgs.coreutils}/bin/echo " has been banned: jail has banned from accessing $(hostname) after attempts of hacking the system." | /run/wrappers/bin/sendmail -i fail2ban@localhost.com + actionban = ${pkgs.curl}/bin/curl -H " has been banned: jail has banned from accessing $(hostname) after attempts of hacking the system. https://ntfy.kylekrein.com" ''); # Defines a filter that detects URL probing by reading the Nginx access log "fail2ban/filter.d/nginx-url-probe.local".text = pkgs.lib.mkDefault (pkgs.lib.mkAfter ''