devins.page / flake
configurations for my servers and desktops
nix nixos flake dots dotfiles
fork atom

fix: once and for all, hopefully

devins.page cb0f081d 449a9b94

+2 -4
+2 -3
hosts/bluepill/default.nix
··· 21 21 22 22 services.openssh.extraConfig = '' 23 23 # For all users except git, only allow from LAN and Tailscale 24 - AllowUsers git 25 - Match User *,!git 26 - AllowUsers *@192.168.4.0/22 *@100.64.0.0/10 *@127.0.0.1 24 + Match User * Address !192.168.4.0/22,!100.64.0.0/10,!127.0.0.1 25 + DenyUsers *,!git 27 26 ''; 28 27 29 28 system.autoUpgrade = {
-1
modules/nixos/modules/ssh.nix
··· 8 8 PermitRootLogin = "no"; 9 9 }; 10 10 }; 11 - fail2ban.enable = true; 12 11 }; 13 12 }