Armael/infra
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

openssh CVE mitigation

Browse source
This commit is contained in:
root 2024-07-01 12:50:45 +02:00
parent 8b59d38544
commit 9f98e49084
1 changed files with 1 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

1
common/configuration.nix
View file

@ -9,6 +9,7 @@
# Enable the OpenSSH daemon # Enable the OpenSSH daemon
services.openssh.enable = true; services.openssh.enable = true;
services.openssh.settings.PermitRootLogin = lib.mkDefault "no"; services.openssh.settings.PermitRootLogin = lib.mkDefault "no";
services.openssh.settings.LoginGraceTime = 0;
services.fail2ban = { services.fail2ban = {
enable = true; enable = true;