Migrate to borg backup

[perso/Immae/Config/Nix.git] / flakes / private / system / flake.nix

diff --git a/flakes/private/system/flake.nix b/flakes/private/system/flake.nix
index e40328f1c09b01086662044257f77686229e4bd4..ad6c58cd38ad1fcf5245197a372e009e16d34fd5 100644 (file)
--- a/flakes/private/system/flake.nix
+++ b/flakes/private/system/flake.nix
@@ -28,9 +28,6 @@
 
           users.extraUsers.root.openssh.authorizedKeys.keys = [ config.myEnv.sshd.rootKeys.nix_repository ];
           secrets.deleteSecretsVars = true;
-          secrets.gpgKeys = [
-            ./public_keys/Immae.pub
-          ];
           secrets.secretsVars = "/run/keys/vars.yml";
 
           services.openssh.enable = true;
@@ -41,7 +38,7 @@
             [
               (self: super: {
                 postgresql = self.postgresql_pam;
-                mariadb = self.mariadb_106.overrideAttrs(old: {
+                mariadb = self.mariadb_1011.overrideAttrs(old: {
                   passthru = old.passthru // { mysqlVersion = "5.7"; };
                 });
               }) # don’t put them as generic overlay because of home-manager
@@ -61,6 +58,7 @@
             pkgs.iftop
             pkgs.bind.dnsutils
             pkgs.httpie
+            pkgs.iptables
             pkgs.iotop
             pkgs.whois
             pkgs.ngrep
@@ -84,6 +82,7 @@
             pkgs.rsync
             pkgs.strace
             pkgs.sqlite
+            pkgs.unzip
 
             pkgs.jq
             pkgs.yq
@@ -131,7 +130,7 @@
           };
 
           services.fail2ban.jails.DEFAULT = {
-            settings.bantime = "12h";
+            settings.bantime = lib.mkForce "12h";
             settings.findtime = "12h";
           };
           services.fail2ban = {