ssh

2026-04-25 14:02:27 +02:00 · 2026-04-25 14:02:27 +02:00 · 46b5006fec
commit 46b5006fec
parent 479fc9a47a
2 changed files with 2 additions and 4 deletions
--- a/modules/nixos/users/kylekrein/default.nix
+++ b/modules/nixos/users/kylekrein/default.nix
@ -17,9 +17,7 @@ with lib.${namespace}; let
  admin = true;
  extraGroups = ["networkmanager" "touchscreen"];
  trustedSshKeys = [
-    "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIFDdxZ5OyGcfD1JwEa4RWw86HWZ2dKFR0syrRckl7EvG kylekrein@kylekrein-homepc"
-    "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIAWDM28XBxm4PFBNOouNWxqVmDj1ulUGEgHsRYoODCDG anaconda"
-    "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAINYO1JV6qkQM+EW2WY/RxDFihgSKuFHF1hVtzl+F9ye4 kylekrein@anaconda"
+    "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIF1gj+j+09T8n2HjpBod13WGroWn1cLmNUDmQfGVZllM kylekrein@fleetcarrier"
  ];

  cfg = config.${namespace}.users.${username};
--- a/systems/x86_64-linux/stargate/services/fail2ban.nix
+++ b/systems/x86_64-linux/stargate/services/fail2ban.nix
@ -8,7 +8,7 @@
    "fail2ban/action.d/ntfy.local".text = pkgs.lib.mkDefault (pkgs.lib.mkAfter ''
      [Definition]
      norestored = true # Needed to avoid receiving a new notification after every restart
-      #actionban = ${pkgs.coreutils}/bin/echo "<ip> has been banned: <name> jail has banned <ip> from accessing $(hostname) after <failures> attempts of hacking the system." | /run/wrappers/bin/sendmail -i fail2ban@localhost.com
+      actionban = ${pkgs.curl}/bin/curl -H "<ip> has been banned: <name> jail has banned <ip> from accessing $(hostname) after <failures> attempts of hacking the system. https://ntfy.kylekrein.com"
    '');
    # Defines a filter that detects URL probing by reading the Nginx access log
    "fail2ban/filter.d/nginx-url-probe.local".text = pkgs.lib.mkDefault (pkgs.lib.mkAfter ''