refactor(modules/impermanence): Migrate to by-name while distributing mods

author: Benedikt Peetz <benedikt.peetz@b-peetz.de> 2024-12-24 16:09:20 +0100
committer: Benedikt Peetz <benedikt.peetz@b-peetz.de> 2024-12-24 16:09:20 +0100
commit: b5fc07416652a445f15946ce7e5fc48766cf6722 (patch)
tree: de37587f0673e4aea12bc0532ee1b3879ab1e31c /system/services/fail2ban
parent: fix(modules/back): Set now needed source code URL environment variable (diff)
download: nixos-server-b5fc07416652a445f15946ce7e5fc48766cf6722.tar.gz
nixos-server-b5fc07416652a445f15946ce7e5fc48766cf6722.zip
1 files changed, 9 insertions, 0 deletions
diff --git a/system/services/fail2ban/default.nix b/system/services/fail2ban/default.nix
index f1487e4..1c47568 100644
--- a/system/services/fail2ban/default.nix
+++ b/system/services/fail2ban/default.nix
@@ -1,4 +1,13 @@
 {...}: {
+  vhack.persist.directories = [
+    {
+      directory = "/var/lib/fail2ban";
+      user = "fail2ban";
+      group = "fail2ban";
+      mode = "0700";
+    }
+  ];
+
   services.fail2ban = {
     enable = true;
     maxretry = 7; # ban after 7 failures
author	Benedikt Peetz <benedikt.peetz@b-peetz.de>	2024-12-24 16:09:20 +0100
committer	Benedikt Peetz <benedikt.peetz@b-peetz.de>	2024-12-24 16:09:20 +0100
commit	b5fc07416652a445f15946ce7e5fc48766cf6722 (patch)
tree	de37587f0673e4aea12bc0532ee1b3879ab1e31c /system/services/fail2ban
parent	fix(modules/back): Set now needed source code URL environment variable (diff)
download	nixos-server-b5fc07416652a445f15946ce7e5fc48766cf6722.tar.gz nixos-server-b5fc07416652a445f15946ce7e5fc48766cf6722.zip