Noratrieb/vps
1
0
Fork 0
mirror of https://github.com/Noratrieb/vps.git synced 2026-01-14 16:55:00 +01:00
Code Issues Projects Releases Packages Wiki Activity Actions

Add geolocation to SSH failures

Browse source
This commit is contained in:
nora 2024-09-22 14:07:38 +02:00
parent bb8db3e8e8
commit 322c2ea634
1 changed files with 37 additions and 0 deletions
Download patch file Download diff file Expand all files Collapse all files

37
newinfra/nix/modules/default/default.nix
View file

@ -26,6 +26,23 @@
enable = true; enable = true;
openFirewall = true; openFirewall = true;
banner = "meoooooow!! 😼 :3\n"; banner = "meoooooow!! 😼 :3\n";
hostKeys = [
{
path = "/etc/ssh/ssh_host_ed25519_key";
type = "ed25519";
}
{
# P256
path = "/etc/ssh/ssh_host_ecdsa_key";
type = "ecdsa";
}
{
bits = 4096;
path = "/etc/ssh/ssh_host_rsa_key";
type = "rsa";
}
];
settings = { settings = {
PasswordAuthentication = false; PasswordAuthentication = false;
}; };
@ -100,6 +117,26 @@
node = name; node = name;
}; };
}; };
pipeline_stages = [{
match = {
selector = "{unit = \"sshd.service\"} |= \"Invalid user\"";
stages = [
{ regex = { expression = "Invalid user.*from (?P<ip>.*) port.*"; }; }
{
geoip = {
db = pkgs.fetchurl
{
# Note: You cannot use this for your own usage, this is only for me.
url = "https://github.com/noratrieb-mirrors/maxmind-geoip/releases/download/20240922/GeoLite2-City.mmdb";
sha256 = "sha256-xRGf2JEaEHpxEkIq3jJnZv49lTisFbygbjxiIZHIThg=";
};
source = "ip";
db_type = "city";
};
}
];
};
}];
relabel_configs = [ relabel_configs = [
{ {
source_labels = [ "__journal__systemd_unit" ]; source_labels = [ "__journal__systemd_unit" ];