diff --git a/README.md b/README.md index 1255dc8f..50d36b42 100644 --- a/README.md +++ b/README.md @@ -53,6 +53,7 @@ nix develop -c /etc/nixos/git/docs/setup.sh * Always after reboot * [ ] KDE not saving HDR / high frame rate settings on Wayland * [ ] Figure out a way to pass through GPG AND SSH authentications via SSH (so I can use my YubiKey on my server remotely) +* [ ] High I/O write causing issues on framework-server - Figure out where this is coming from. Seems random ## home-manager * [ ] KDE: @@ -65,7 +66,10 @@ nix develop -c /etc/nixos/git/docs/setup.sh ## Homelab General * [ ] Upgrades: - * [ ] Headscale 0.23 - Need to update the web ui + * [ ] Headscale 0.23 - Need to update the web ui +* [ ] New Features: + * [ ] Add fail2ban to Traefik + * Check other open ports Completed To Do List [here](./docs/complete.md) diff --git a/nixos/hosts/framework-server/default.nix b/nixos/hosts/framework-server/default.nix index fd58a129..8b28def0 100644 --- a/nixos/hosts/framework-server/default.nix +++ b/nixos/hosts/framework-server/default.nix @@ -34,6 +34,8 @@ ''ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIBGXiWUR2T5HXQ4g/En+eJ9K6GSokl3tEK7RZcYb+0UA root@frankfurt-linode-01'' ''ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIIcGPkzFaSGd1q/oy/uP5zEoOuPNr1h17ifu7oj4DaYO root@warsaw-ovh-01'' ]; + + # Allow root login, but only with SSH keys services.openssh.settings.PermitRootLogin = lib.mkForce "prohibit-password"; boot.initrd.availableKernelModules = [ "xhci_pci" "nvme" "thunderbolt" "sd_mod" "uas" ];