2019-08-11 19:53:02 +01:00
|
|
|
{
|
2021-03-08 20:00:02 +00:00
|
|
|
# Make sure that the firewall is enabled, even if it's the default.
|
|
|
|
networking.firewall.enable = true;
|
2019-08-11 19:53:02 +01:00
|
|
|
|
2022-01-29 10:46:10 +01:00
|
|
|
programs.ssh.knownHosts = {
|
2022-08-13 10:48:09 +02:00
|
|
|
build01 = {
|
2022-08-14 16:49:30 +02:00
|
|
|
hostNames = [ "build01.nix-community.org" ];
|
2022-08-13 10:48:09 +02:00
|
|
|
publicKey = "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIElIQ54qAy7Dh63rBudYKdbzJHrrbrrMXLYl7Pkmk88H";
|
|
|
|
};
|
|
|
|
build02 = {
|
2022-08-14 16:49:30 +02:00
|
|
|
hostNames = [ "build02.nix-community.org" ];
|
2022-08-13 10:48:09 +02:00
|
|
|
publicKey = "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIMm3/o1HguyRL1z/nZxLBY9j/YUNXeNuDoiBLZAyt88Z";
|
|
|
|
};
|
|
|
|
build03 = {
|
2022-08-14 16:49:30 +02:00
|
|
|
hostNames = [ "build03.nix-community.org" ];
|
2022-08-13 10:48:09 +02:00
|
|
|
publicKey = "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIFiozp1A1+SUfJQPa5DZUQcVc6CZK2ZxL6FJtNdh+2TP";
|
|
|
|
};
|
|
|
|
build04 = {
|
2022-08-14 16:49:30 +02:00
|
|
|
hostNames = [ "build04.nix-community.org" ];
|
2022-08-13 10:48:09 +02:00
|
|
|
publicKey = "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIPU/gbREwVuI1p3ag1iG72jxl2/92yGl38c+TPOfFMH8";
|
|
|
|
};
|
2022-10-28 10:12:52 +10:00
|
|
|
aarch64-nixos-community = {
|
|
|
|
hostNames = [ "aarch64.nixos.community" ];
|
|
|
|
publicKey = "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIMUTz5i9u5H2FHNAmZJyoJfIGyUm/HfGhfwnc142L3ds";
|
|
|
|
};
|
2022-01-29 10:46:10 +01:00
|
|
|
};
|
|
|
|
|
2019-08-11 19:53:02 +01:00
|
|
|
# Ban brute force SSH
|
|
|
|
services.fail2ban.enable = true;
|
|
|
|
}
|