diff --git a/homes/modules/server/fail2ban.nix b/homes/modules/server/fail2ban.nix deleted file mode 100755 index 0681c68..0000000 --- a/homes/modules/server/fail2ban.nix +++ /dev/null @@ -1,17 +0,0 @@ -{...}: { - # simple fail2ban config (not production ready or anything though) - # refer to: https://nixos.wiki/wiki/Fail2Ban - services.fail2ban = { - enable = true; - - maxretry = 5; - bantime = "10m"; # 10 minute ban - bantime-increment = { - enable = true; - formula = "ban.Time * math.exp(float(ban.Count+1)*banFactor)/math.exp(1*banFactor)"; - multipliers = "1 2 4 8 16 32 64"; - maxtime = "168h"; # dont ban for more than 1 week - overalljails = true; - }; - }; -} diff --git a/homes/modules/server/nginx.nix b/homes/modules/server/nginx.nix deleted file mode 100755 index a11b65c..0000000 --- a/homes/modules/server/nginx.nix +++ /dev/null @@ -1,35 +0,0 @@ -{...}: { - services = { - # use nginx as the reverse proxy - # (also will use certbot and Let's Encrypt) - # refer to: https://nixos.wiki/wiki/Nginx - nginx = { - enable = true; - - recommendedProxySettings = true; - recommendedTlsSettings = true; - recommendedGzipSettings = true; - recommendedOptimisation = true; - - # https://imbored.dev - virtualHosts = { - "imbored.dev" = { - forceSSL = true; - enableACME = true; - # config reverse proxy paths - locations = { - "/" = { - # TODO - proxyPass = "http://127.0.0.1:12345"; - }; - }; - }; - }; - }; - }; - - security.acme = { - acceptTerms = true; - defaults.email = "eclarkboman@gmail.com"; - }; -} diff --git a/homes/modules/server/ssh.nix b/homes/modules/server/ssh.nix deleted file mode 100755 index b898468..0000000 --- a/homes/modules/server/ssh.nix +++ /dev/null @@ -1,13 +0,0 @@ -{...}: { - services.openssh = { - enable = true; - ports = [22]; - settings = { - PasswordAuthentication = true; - PermitRootLogin = "no"; - AllowUsers = null; # allow all users by default - UseDns = true; - X11Forwarding = false; - }; - }; -}