diff options
Diffstat (limited to 'modules/pc/software/access/ssh.nix')
| -rw-r--r-- | modules/pc/software/access/ssh.nix | 11 |
1 files changed, 11 insertions, 0 deletions
diff --git a/modules/pc/software/access/ssh.nix b/modules/pc/software/access/ssh.nix new file mode 100644 index 0000000..b514049 --- /dev/null +++ b/modules/pc/software/access/ssh.nix @@ -0,0 +1,11 @@ +{ lib, config, ... }: +{ + programs.ssh.startAgent = false; + security.pam.sshAgentAuth.enable = true; + + services.fail2ban.jails.sshd.settings = { + enabled = true; + filter = "sshd[mode=aggressive]"; + port = lib.strings.concatStringsSep "," (map toString config.services.openssh.ports); + }; +} |