From b5fc07416652a445f15946ce7e5fc48766cf6722 Mon Sep 17 00:00:00 2001
From: Benedikt Peetz <benedikt.peetz@b-peetz.de>
Date: Tue, 24 Dec 2024 16:09:20 +0100
Subject: refactor(modules/impermanence): Migrate to by-name while distributing
 mods

---
 system/services/fail2ban/default.nix | 9 +++++++++
 1 file changed, 9 insertions(+)

(limited to 'system/services/fail2ban/default.nix')

diff --git a/system/services/fail2ban/default.nix b/system/services/fail2ban/default.nix
index f1487e4..1c47568 100644
--- a/system/services/fail2ban/default.nix
+++ b/system/services/fail2ban/default.nix
@@ -1,4 +1,13 @@
 {...}: {
+  vhack.persist.directories = [
+    {
+      directory = "/var/lib/fail2ban";
+      user = "fail2ban";
+      group = "fail2ban";
+      mode = "0700";
+    }
+  ];
+
   services.fail2ban = {
     enable = true;
     maxretry = 7; # ban after 7 failures
-- 
cgit 1.4.1